I might add that you should download a program like rootkit hunter [1] and see if your machine has been compromised. If you are running on managed hosting you might want to write a note to the hosting company asking them to do the same. It's not like attackers are going to send you a postcard "FYI we own your server now". [1] http://www.rootkit.nl/ Robert Douglass wrote:
stevryn wrote:
my live site is 4.6.1, I havent wanted to take the great leap and update, last time I did it was *not* pretty.
I hope at least that you've taken steps to protect yourself from the XML-RPC security issue that makes it a trivial operation to take control of the machine your site is running on?
Really --- NOBODY should be running 4.6.1, no matter how hard it may seem to upgrade.