paulormf Posted September 6, 2014 Share Posted September 6, 2014 (edited) Hello for all! I'm having a big problem in my store. suddenly began to create various index.php consuming processes where the server is hosted. Anyone can help me? --- Running Processes: shops340 28770 7.6 0.4 436716 74156 ? RN 22:43 0:08 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 28994 7.6 0.4 369392 72872 ? RN 22:43 0:08 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29124 7.5 0.4 370928 74004 ? RN 22:43 0:07 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29136 7.6 0.4 370932 73276 ? RN 22:43 0:07 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29461 7.7 0.4 432068 70984 ? RN 22:43 0:07 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29501 7.8 0.4 432068 70892 ? RN 22:43 0:07 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29535 7.7 0.4 366536 70832 ? RN 22:43 0:06 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29958 7.8 0.4 366536 70192 ? RN 22:43 0:06 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31409 7.7 0.4 427944 67228 ? RN 22:44 0:04 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31428 7.4 0.4 427348 66740 ? RN 22:44 0:03 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31550 7.7 0.4 427712 66784 ? RN 22:44 0:03 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31587 7.5 0.4 427200 66248 ? RN 22:44 0:03 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31765 7.5 0.3 424032 63392 ? SN 22:44 0:03 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31851 7.7 0.3 424040 63396 ? RN 22:44 0:02 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php Running Queries: *************************** 1. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 1 COMMAND: Sleep INFO: NULL *************************** 2. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: Copying to tmp table TIME: 0 COMMAND: Query INFO: SELECT p.*, product_shop.*, stock.out_of_stock, IFNULL(stock.quantity, 0) as quantity, MAX(product_attribute_shop.id_product_attribute) id_product_attribute, product_attribute_shop.minimal_quantity AS product_attribute_minimal_quantity, pl.`description`, pl.`description_short`, pl.`available_now`, pl.`available_later`, pl.`link_rewrite`, pl.`meta_description`, pl.`meta_keywords`, pl.`meta_title`, pl.`name`, MAX(image_shop.`id_image`) id_image, il.`legend`, m.`name` AS manufacturer_name, cl.`name` AS category_default, DATEDIFF(product_shop.`date_add`, DATE_SUB(NOW(), INTERVAL 60 DAY)) > 0 AS new, product_shop.price AS orderprice FROM `ps_category_product` cp LEFT JOIN `ps_product` p ON p.`id_product` = cp.`id_product` INNER JOIN ps_product_shop product_shop ON (product_shop.id_product = p.id_product AND product_shop.id_shop = 1) LEFT JOIN `ps_product_attribute` pa ON (p.`id_product` = pa.`id_product`) LEFT JOIN ps_product_attribute_shop product_attribute_shop ON (product_attribute_shop.id_product_attribute = pa.id_product_attribute AND product_attribute_shop.id_shop = 1 AND product_attribute_shop.`default_on` = 1) LEFT JOIN ps_stock_available stock ON (stock.id_product = p.id_product AND stock.id_product_attribute = IFNULL(`product_attribute_shop`.id_product_attribute, 0) AND stock.id_shop = 1 AND stock.id_shop_group = 0 ) LEFT JOIN `ps_category_lang` cl ON (product_shop.`id_category_default` = cl.`id_category` AND cl.`id_lang` = 1 AND cl.id_shop = 1 ) LEFT JOIN `ps_product_lang` pl ON (p.`id_product` = pl.`id_product` AND pl.`id_lang` = 1 AND pl.id_shop = 1 ) LEFT JOIN `ps_image` i ON (i.`id_product` = p.`id_product`) LEFT JOIN ps_image_shop image_shop ON (image_shop.id_image = i.id_image AND image_shop.id_shop = 1 AND image_shop.cover=1) LEFT JOIN `ps_image_lang` il ON (image_shop.`id_image` = il.`id_image` AND il.`id_lang` = 1) LEFT JOIN `ps_manufacturer` m ON m.`id_manufacturer` = p.`id_manufacturer` WHERE product_shop.`id_shop` = 1 AND cp.`id_category` = 2 AND product_shop.`active` = 1 AND product_shop.`visibility` IN ("both", "catalog") GROUP BY product_shop.id_product ORDER BY cp.`position` ASC LIMIT 0,52 *************************** 3. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 0 COMMAND: Sleep INFO: NULL *************************** 4. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 0 COMMAND: Sleep INFO: NULL *************************** 5. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 1 COMMAND: Sleep INFO: NULL *************************** 6. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 3 COMMAND: Sleep INFO: NULL *************************** 7. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 2 COMMAND: Sleep INFO: NULL *************************** 8. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 3 COMMAND: Sleep INFO: NULL *************************** 9. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 5 COMMAND: Sleep INFO: NULL *************************** 10. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 0 COMMAND: Sleep INFO: NULL *************************** 11. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 3 COMMAND: Sleep INFO: NULL *************************** 12. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 2 COMMAND: Sleep INFO: NULL *************************** 13. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 0 COMMAND: Sleep INFO: NULL *************************** 14. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 7 COMMAND: Sleep INFO: NULL Edited September 8, 2014 by paulormf (see edit history) Link to comment Share on other sites More sharing options...
paulormf Posted September 8, 2014 Author Share Posted September 8, 2014 Hello for all! I'm having a big problem in my store. suddenly began to create various index.php consuming processes where the server is hosted. Anyone can help me? --- Running Processes: shops340 28770 7.6 0.4 436716 74156 ? RN 22:43 0:08 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 28994 7.6 0.4 369392 72872 ? RN 22:43 0:08 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29124 7.5 0.4 370928 74004 ? RN 22:43 0:07 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29136 7.6 0.4 370932 73276 ? RN 22:43 0:07 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29461 7.7 0.4 432068 70984 ? RN 22:43 0:07 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29501 7.8 0.4 432068 70892 ? RN 22:43 0:07 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29535 7.7 0.4 366536 70832 ? RN 22:43 0:06 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 29958 7.8 0.4 366536 70192 ? RN 22:43 0:06 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31409 7.7 0.4 427944 67228 ? RN 22:44 0:04 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31428 7.4 0.4 427348 66740 ? RN 22:44 0:03 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31550 7.7 0.4 427712 66784 ? RN 22:44 0:03 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31587 7.5 0.4 427200 66248 ? RN 22:44 0:03 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31765 7.5 0.3 424032 63392 ? SN 22:44 0:03 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php shops340 31851 7.7 0.3 424040 63396 ? RN 22:44 0:02 /usr/bin/php /home/shops340/public_html/shopsensual.com.br/index.php Running Queries: *************************** 1. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 1 COMMAND: Sleep INFO: NULL *************************** 2. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: Copying to tmp table TIME: 0 COMMAND: Query INFO: SELECT p.*, product_shop.*, stock.out_of_stock, IFNULL(stock.quantity, 0) as quantity, MAX(product_attribute_shop.id_product_attribute) id_product_attribute, product_attribute_shop.minimal_quantity AS product_attribute_minimal_quantity, pl.`description`, pl.`description_short`, pl.`available_now`, pl.`available_later`, pl.`link_rewrite`, pl.`meta_description`, pl.`meta_keywords`, pl.`meta_title`, pl.`name`, MAX(image_shop.`id_image`) id_image, il.`legend`, m.`name` AS manufacturer_name, cl.`name` AS category_default, DATEDIFF(product_shop.`date_add`, DATE_SUB(NOW(), INTERVAL 60 DAY)) > 0 AS new, product_shop.price AS orderprice FROM `ps_category_product` cp LEFT JOIN `ps_product` p ON p.`id_product` = cp.`id_product` INNER JOIN ps_product_shop product_shop ON (product_shop.id_product = p.id_product AND product_shop.id_shop = 1) LEFT JOIN `ps_product_attribute` pa ON (p.`id_product` = pa.`id_product`) LEFT JOIN ps_product_attribute_shop product_attribute_shop ON (product_attribute_shop.id_product_attribute = pa.id_product_attribute AND product_attribute_shop.id_shop = 1 AND product_attribute_shop.`default_on` = 1) LEFT JOIN ps_stock_available stock ON (stock.id_product = p.id_product AND stock.id_product_attribute = IFNULL(`product_attribute_shop`.id_product_attribute, 0) AND stock.id_shop = 1 AND stock.id_shop_group = 0 ) LEFT JOIN `ps_category_lang` cl ON (product_shop.`id_category_default` = cl.`id_category` AND cl.`id_lang` = 1 AND cl.id_shop = 1 ) LEFT JOIN `ps_product_lang` pl ON (p.`id_product` = pl.`id_product` AND pl.`id_lang` = 1 AND pl.id_shop = 1 ) LEFT JOIN `ps_image` i ON (i.`id_product` = p.`id_product`) LEFT JOIN ps_image_shop image_shop ON (image_shop.id_image = i.id_image AND image_shop.id_shop = 1 AND image_shop.cover=1) LEFT JOIN `ps_image_lang` il ON (image_shop.`id_image` = il.`id_image` AND il.`id_lang` = 1) LEFT JOIN `ps_manufacturer` m ON m.`id_manufacturer` = p.`id_manufacturer` WHERE product_shop.`id_shop` = 1 AND cp.`id_category` = 2 AND product_shop.`active` = 1 AND product_shop.`visibility` IN ("both", "catalog") GROUP BY product_shop.id_product ORDER BY cp.`position` ASC LIMIT 0,52 *************************** 3. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 0 COMMAND: Sleep INFO: NULL *************************** 4. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 0 COMMAND: Sleep INFO: NULL *************************** 5. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 1 COMMAND: Sleep INFO: NULL *************************** 6. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 3 COMMAND: Sleep INFO: NULL *************************** 7. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 2 COMMAND: Sleep INFO: NULL *************************** 8. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 3 COMMAND: Sleep INFO: NULL *************************** 9. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 5 COMMAND: Sleep INFO: NULL *************************** 10. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 0 COMMAND: Sleep INFO: NULL *************************** 11. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 3 COMMAND: Sleep INFO: NULL *************************** 12. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 2 COMMAND: Sleep INFO: NULL *************************** 13. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 0 COMMAND: Sleep INFO: NULL *************************** 14. row *************************** USER: shops340_presta DB: shops340_prestashop STATE: TIME: 7 COMMAND: Sleep INFO: NULL --- Anyone can help pls? Link to comment Share on other sites More sharing options...
paulormf Posted September 8, 2014 Author Share Posted September 8, 2014 Hello for all!! After much fighting, the provider where I have hosted my store better analyzed my case and identified that the site was under attack (at q researched on the Internet is common to happen) generating all processes and blocked the ips that were attacking. I'll leave it here because it may be what happens with someone else and I think will be helpful. Although my store is in PrestaShop, the attacks were carried out in shops to WordPress. Below is the log. 72.51.35.14 - - [08/Sep/2014:10:04:35 -0300] "POST /wp-login.php HTTP/1.0" 406 226 "-" "-" 72.51.35.14 - - [08/Sep/2014:10:04:36 -0300] "POST /wp-login.php HTTP/1.0" 406 226 "-" "-" 72.51.35.14 - - [08/Sep/2014:10:04:36 -0300] "POST /wp-login.php HTTP/1.0" 406 226 "-" "-" 72.51.35.14 - - [08/Sep/2014:10:04:37 -0300] "POST /wp-login.php HTTP/1.0" 406 226 "-" "-" After blocking the ips, my store is once again operating normally. About the attack, I found many articles on the Internet, following which teaches one to prevent this type of attack effecting a change in the htaccess file. http: //www.joedog.or...tionary-attack/ There is a hint in case anyone faces the same problem. Regards! Link to comment Share on other sites More sharing options...
.png.022b5452a8f28f552bc9430097a16da2.png)
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now