Moderator
James Huff
(@macmanx)
Volunteer Moderator
Well, if you don’t know what the .config file is, just delete it I suppose.
As for the error, try manually resetting your plugins (no Dashboard access required). If that resolves the issue, reactivate each one individually until you find the cause.
If that does not resolve the issue, access your server via FTP or SFTP, navigate to /wp-content/themes/ and rename the directory of your currently active theme. This will force the default theme to activate and hopefully rule-out a theme-specific issue (theme functions can interfere like plugins).
Thread Starter
jd90
(@josefe03)
The database is damaged, I had to completely erase only rescue the table of the post or page that was the most important, delete the suspicious plugin, this: http://thealpinepress.com/alpine-phototile-for-picasa-and-google-plus/, only have to wait a day or two to see what happens. The .config file redirected to advertising.
Moderator
James Huff
(@macmanx)
Volunteer Moderator
Why do you need to wait a day or two? You should be able to see results now.
Also, you may want to implement some (if not all) of the recommended security measures.
Thread Starter
jd90
(@josefe03)
I install the Site twice, two days after the error occurred. Install it on another hosting without the plugin and nothing happened, still active since 15 days ago. Nice plugin but…
Moderator
James Huff
(@macmanx)
Volunteer Moderator
If you have details on the exploit, please do report it to plugins (at) wordpress (dot) org so they can protect future users.
Thread Starter
jd90
(@josefe03)
I delete the file but I will install it on a test site. then I will send a report to wordpress, of course if the site without the plugin is still in line, if not the template that has the virus but do not think so. But it is always best to confirm and do not give bad reputation to a plugin with no clear evidence.
Moderator
James Huff
(@macmanx)
Volunteer Moderator
Definitely, thanks for doing that! 🙂
Thread Starter
jd90
(@josefe03)
Good morning, the website is online without the plugin. but the test site is also in line. It may be that the hosting has some security problem, I do not know, the test site will be active a few more days and see what happens.
Moderator
James Huff
(@macmanx)
Volunteer Moderator
While you’re waiting, you may want to implement some (if not all) of the recommended security measures.
Thread Starter
jd90
(@josefe03)
Moderator
James Huff
(@macmanx)
Volunteer Moderator
It looks just fine to me right now. Maybe your server went out offline temporarily?
Thread Starter
jd90
(@josefe03)
is the template, I found the line of code, both sites are offline. The test site is online.
.config file code:
[ Moderator note: malware redacted, please do not post that here. ]
Moderator
James Huff
(@macmanx)
Volunteer Moderator
Have you talked to your hosting provider about this? I’m not really sure what more we can do at this point besides suggest what to look for, as we’ve already done.
Thread Starter
jd90
(@josefe03)
I delete the code within the template that created the config file, I do not know if the section of the template has permission to write or create files. 775 is permission. The template was free is called Spot. is not the same as that found in the repositories of wordpress.
Thread Starter
jd90
(@josefe03)
Sorry the name is Travelify, I do not know if it will have the same code as that found in the wordpress repository.
