WordPress.org

Ready to get started?Download WordPress

Forums

Spamed to the max...blog not working at all : ( (10 posts)

  1. candid cam
    Member
    Posted 1 year ago #

    I deactivated my plugins bc my comment forms were not showing up on my posts. When I re-activated them, I forgot to reactivate Akismet (for spam) which I assume is how/why all of the spam got through to my blog. Since then, my blog vanished, with the explanation from my host, Laughing Squid being this...

    "This issue was occurring because your site had been exploited to insert spam links into it. While investigating we noticed that many plugins and themes were out of date, leaving the site open to multiple security problems, and this is likely the entry point for the malicious code insertion.

    We’ve upgraded any plugins and themes that were out of date. We also installed the WordPress exploit scanner plugin to help you identify any remaining malware that may be left behind in the site.

    We recommend working with a web developer to assist you with any remaining cleanup of the site. Please note that failure to remove malware may result in suspension of service to maintain the security and integrity of our hosting environment."

    Since then The home page of my blog is visible but if you click on anything, including any posts, or pages, "http://briask-rida.ru/piolo?13" and a blank screen comes up.
    As for the suggestion to work with a web developer, I really don't have one (any ideas ons where to find one even....stupid question, I know) and have no idea what to do to resolve this and am frustrated. I know this message is long, but would REALLY appreciate feedback and help. Thank you.

  2. esmi
    Theme Diva & Forum Moderator
    Posted 1 year ago #

    Have you tried:

    - deactivating all plugins to see if this resolves the problem. If this works, re-activate the plugins one by one until you find the problematic plugin(s).

    - switching to the Twenty Eleven theme to rule out any theme-specific problems.

    - resetting the plugins folder by FTP or PhpMyAdmin. Sometimes, an apparently inactive plugin can still cause problems.

    - re-uploading all files & folders - except the wp-content folder - from a fresh download of your current version of WordPress.

  3. cjchamberland
    Member
    Posted 1 year ago #

    "Since then The home page of my blog is visible but if you click on anything, including any posts, or pages, "http://briask-rida.ru/piolo?13" and a blank screen comes up."

    Check your ".htaccess" file for possible conditional redirects. You're definately infected somewhere with malware. If you don't find anything in the htaccess file, Try the following:

    http://malwareremovalservice.com/i-cant-locate-malware-site-i-do/

  4. cajm
    Member
    Posted 1 year ago #

    It is in the .htaccess

    <IfModule mod_rewrite.c>

    RewriteEngine On

    RewriteCond %{HTTP_REFERER} ^.*(google|ask|yahoo|youtube|wikipedia|excite|altavista|msn|aol|goto|infoseek|lycos|search|bing|dogpile|facebook|twitter|live|myspace|linkedin|flickr)\.(.*)

    RewriteRule ^(.*)$ [ bad site removed, you don't have to share that part ] [R=301,L]

    </IfModule>

    how protect the htaccess

  5. @cajm Please start your own thread. It's considered impolite to interrupt someone else's thread.

    http://wordpress.org/support/forum/how-to-and-troubleshooting#postform

    Edit: cajm, I may have overreacted and misunderstood that you were attempting to help the OP. I apologize if that is the case.

  6. candid cam
    Member
    Posted 1 year ago #

    I'm sorry, where would I find the .htaccess file?

  7. cjchamberland
    Member
    Posted 1 year ago #

    It's usually a "hidden" file in your root directory of your website and sometimes they place them in the subdirectories as well. You have to specify in your control panel or FTP client to explicitly display "hidden" files, otherwise you won't see it.

  8. cajm
    Member
    Posted 1 year ago #

    @jan : no problem

    @all : I modified the file and it works

  9. The important thing is this: something modified that .htaccess file. Those links I provided can help you secure your WordPress installation to (hopefully) prevent that from occurring again.

    If it's the server that is compromised then that will make it a bigger problem to solve.

Topic Closed

This topic has been closed to new replies.

About this Topic