My wordpress site is part of a pingback botnet

  • Hi im sorry for my poor english

    All this start one week ago when i got few complaint emails from my host telling me that my site is attacking someone else website :/
    i’ve read and tried almost everything i could find online about this but still not able to fix it.Looks like someone is abusing my xmlrpc.php file and my website is being part of pingback botnet.
    Hosting provider scanned my server and could not find anything weird or any malware.

    I was using latest version of wordpress when all this started.
    Here is what i’ve done to fix it and didnt work.

    Update themes/plugins to latest version
    Remove/Disable unwanted/unused plugins
    Install security related plugins to prevent XML-RPC attack, brute-force attack
    Blocked specific countries to access the site
    I had free version of wordfence installed on this site and scanned my site with it but nothing found.

    Below a screenshot of email i got with logs of the websites that getting attacked by my server.Screenshots before and after i deleted the xmlrpc.php

    Before

    View post on imgur.com

    After i deleted xmlrpc.php

    View post on imgur.com

Viewing 2 replies - 1 through 2 (of 2 total)

  • I guess your problem is not necessarily related to wordpress.

    Someone may have put a php file inside your web site, and this php file do the hacking job.

    I believe you should ask to your web host how to remove it.

    Thread Starter rajli

    (@rajli)

    Already asked them but they are not being very helpful , they only offered to do a malware scan and thats it

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘My wordpress site is part of a pingback botnet’ is closed to new replies.