Title: dota2hook's Replies | WordPress.org
---
# dota2hook
[ ](https://wordpress.org/support/users/dota2hook/)
* [Profile](https://wordpress.org/support/users/dota2hook/)
* [Topics Started](https://wordpress.org/support/users/dota2hook/topics/)
* [Replies Created](https://wordpress.org/support/users/dota2hook/replies/)
* [Reviews Written](https://wordpress.org/support/users/dota2hook/reviews/)
* [Topics Replied To](https://wordpress.org/support/users/dota2hook/replied-to/)
* [Engagements](https://wordpress.org/support/users/dota2hook/engagements/)
* [Favorites](https://wordpress.org/support/users/dota2hook/favorites/)
Search replies:
## Forum Replies Created
Viewing 3 replies - 1 through 3 (of 3 total)
* Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
In reply to: [Clicking on Link downloads .gz instead of going to the page.](https://wordpress.org/support/topic/clicking-on-link-downloads-gz-instead-of-going-to-the-page/)
* Thread Starter [dota2hook](https://wordpress.org/support/users/dota2hook/)
* (@dota2hook)
* [12 years, 9 months ago](https://wordpress.org/support/topic/clicking-on-link-downloads-gz-instead-of-going-to-the-page/#post-3950735)
* The htaccess:
* ```
text/x-generic .htaccess
Non-ISO extended-ASCII text, with very long lines
# BEGIN WPSuperCache
RewriteEngine On
RewriteBase /
#If you serve pages from behind a proxy you may want to change 'RewriteCond %{HTTPS} on' to something more sensible
AddDefaultCharset UTF-8
RewriteCond %{REQUEST_METHOD} !POST
RewriteCond %{QUERY_STRING} !.*=.*
RewriteCond %{HTTP:Cookie} !^.*(comment_author_|wordpress_logged_in|wp-postpass_).*$
RewriteCond %{HTTP:X-Wap-Profile} !^[a-z0-9\"]+ [NC]
RewriteCond %{HTTP:Profile} !^[a-z0-9\"]+ [NC]
RewriteCond %{HTTP_USER_AGENT} !^.*(2.0\ MMP|240x320|400X240|AvantGo|BlackBerry|Blazer|Cellphone|Danger|DoCoMo|Elaine/3.0|EudoraWeb|Googlebot-Mobile|hiptop|IEMobile|KYOCERA/WX310K|LG/U990|MIDP-2.|MMEF20|MOT-V|NetFront|Newt|Nintendo\ Wii|Nitro|Nokia|Opera\ Mini|Palm|PlayStation\ Portable|portalmmm|Proxinet|ProxiNet|SHARP-TQ-GX10|SHG-i900|Small|SonyEricsson|Symbian\ OS|SymbianOS|TS21i-10|UP.Browser|UP.Link|webOS|Windows\ CE|WinWAP|YahooSeeker/M1A1-R2D2|iPhone|iPod|Android|BlackBerry9530|LG-TU915\ Obigo|LGE\ VX|webOS|Nokia5800).* [NC]
RewriteCond %{HTTP_user_agent} !^(w3c\ |w3c-|acs-|alav|alca|amoi|audi|avan|benq|bird|blac|blaz|brew|cell|cldc|cmd-|dang|doco|eric|hipt|htc_|inno|ipaq|ipod|jigs|kddi|keji|leno|lg-c|lg-d|lg-g|lge-|lg/u|maui|maxo|midp|mits|mmef|mobi|mot-|moto|mwbp|nec-|newt|noki|palm|pana|pant|phil|play|port|prox|qwap|sage|sams|sany|sch-|sec-|send|seri|sgh-|shar|sie-|siem|smal|smar|sony|sph-|symb|t-mo|teli|tim-|tosh|tsm-|upg1|upsi|vk-v|voda|wap-|wapa|wapi|wapp|wapr|webc|winw|winw|xda\ |xda-).* [NC]
RewriteCond %{HTTP:Accept-Encoding} gzip
RewriteCond %{HTTPS} on
RewriteCond %{DOCUMENT_ROOT}/wp-content/cache/supercache/%{SERVER_NAME}/$1/index-https.html.gz -f
RewriteRule ^(.*) "/wp-content/cache/supercache/%{SERVER_NAME}/$1/index-https.html.gz" [L]
RewriteCond %{REQUEST_METHOD} !POST
RewriteCond %{QUERY_STRING} !.*=.*
RewriteCond %{HTTP:Cookie} !^.*(comment_author_|wordpress_logged_in|wp-postpass_).*$
RewriteCond %{HTTP:X-Wap-Profile} !^[a-z0-9\"]+ [NC]
RewriteCond %{HTTP:Profile} !^[a-z0-9\"]+ [NC]
RewriteCond %{HTTP_USER_AGENT} !^.*(2.0\ MMP|240x320|400X240|AvantGo|BlackBerry|Blazer|Cellphone|Danger|DoCoMo|Elaine/3.0|EudoraWeb|Googlebot-Mobile|hiptop|IEMobile|KYOCERA/WX310K|LG/U990|MIDP-2.|MMEF20|MOT-V|NetFront|Newt|Nintendo\ Wii|Nitro|Nokia|Opera\ Mini|Palm|PlayStation\ Portable|portalmmm|Proxinet|ProxiNet|SHARP-TQ-GX10|SHG-i900|Small|SonyEricsson|Symbian\ OS|SymbianOS|TS21i-10|UP.Browser|UP.Link|webOS|Windows\ CE|WinWAP|YahooSeeker/M1A1-R2D2|iPhone|iPod|Android|BlackBerry9530|LG-TU915\ Obigo|LGE\ VX|webOS|Nokia5800).* [NC]
RewriteCond %{HTTP_user_agent} !^(w3c\ |w3c-|acs-|alav|alca|amoi|audi|avan|benq|bird|blac|blaz|brew|cell|cldc|cmd-|dang|doco|eric|hipt|htc_|inno|ipaq|ipod|jigs|kddi|keji|leno|lg-c|lg-d|lg-g|lge-|lg/u|maui|maxo|midp|mits|mmef|mobi|mot-|moto|mwbp|nec-|newt|noki|palm|pana|pant|phil|play|port|prox|qwap|sage|sams|sany|sch-|sec-|send|seri|sgh-|shar|sie-|siem|smal|smar|sony|sph-|symb|t-mo|teli|tim-|tosh|tsm-|upg1|upsi|vk-v|voda|wap-|wapa|wapi|wapp|wapr|webc|winw|winw|xda\ |xda-).* [NC]
RewriteCond %{HTTP:Accept-Encoding} gzip
RewriteCond %{HTTPS} !on
RewriteCond %{DOCUMENT_ROOT}/wp-content/cache/supercache/%{SERVER_NAME}/$1/index.html.gz -f
RewriteRule ^(.*) "/wp-content/cache/supercache/%{SERVER_NAME}/$1/index.html.gz" [L]
RewriteCond %{REQUEST_METHOD} !POST
RewriteCond %{QUERY_STRING} !.*=.*
RewriteCond %{HTTP:Cookie} !^.*(comment_author_|wordpress_logged_in|wp-postpass_).*$
RewriteCond %{HTTP:X-Wap-Profile} !^[a-z0-9\"]+ [NC]
RewriteCond %{HTTP:Profile} !^[a-z0-9\"]+ [NC]
RewriteCond %{HTTP_USER_AGENT} !^.*(2.0\ MMP|240x320|400X240|AvantGo|BlackBerry|Blazer|Cellphone|Danger|DoCoMo|Elaine/3.0|EudoraWeb|Googlebot-Mobile|hiptop|IEMobile|KYOCERA/WX310K|LG/U990|MIDP-2.|MMEF20|MOT-V|NetFront|Newt|Nintendo\ Wii|Nitro|Nokia|Opera\ Mini|Palm|PlayStation\ Portable|portalmmm|Proxinet|ProxiNet|SHARP-TQ-GX10|SHG-i900|Small|SonyEricsson|Symbian\ OS|SymbianOS|TS21i-10|UP.Browser|UP.Link|webOS|Windows\ CE|WinWAP|YahooSeeker/M1A1-R2D2|iPhone|iPod|Android|BlackBerry9530|LG-TU915\ Obigo|LGE\ VX|webOS|Nokia5800).* [NC]
RewriteCond %{HTTP_user_agent} !^(w3c\ |w3c-|acs-|alav|alca|amoi|audi|avan|benq|bird|blac|blaz|brew|cell|cldc|cmd-|dang|doco|eric|hipt|htc_|inno|ipaq|ipod|jigs|kddi|keji|leno|lg-c|lg-d|lg-g|lge-|lg/u|maui|maxo|midp|mits|mmef|mobi|mot-|moto|mwbp|nec-|newt|noki|palm|pana|pant|phil|play|port|prox|qwap|sage|sams|sany|sch-|sec-|send|seri|sgh-|shar|sie-|siem|smal|smar|sony|sph-|symb|t-mo|teli|tim-|tosh|tsm-|upg1|upsi|vk-v|voda|wap-|wapa|wapi|wapp|wapr|webc|winw|winw|xda\ |xda-).* [NC]
RewriteCond %{HTTPS} on
RewriteCond %{DOCUMENT_ROOT}/wp-content/cache/supercache/%{SERVER_NAME}/$1/index-https.html -f
RewriteRule ^(.*) "/wp-content/cache/supercache/%{SERVER_NAME}/$1/index-https.html" [L]
RewriteCond %{REQUEST_METHOD} !POST
RewriteCond %{QUERY_STRING} !.*=.*
RewriteCond %{HTTP:Cookie} !^.*(comment_author_|wordpress_logged_in|wp-postpass_).*$
RewriteCond %{HTTP:X-Wap-Profile} !^[a-z0-9\"]+ [NC]
RewriteCond %{HTTP:Profile} !^[a-z0-9\"]+ [NC]
RewriteCond %{HTTP_USER_AGENT} !^.*(2.0\ MMP|240x320|400X240|AvantGo|BlackBerry|Blazer|Cellphone|Danger|DoCoMo|Elaine/3.0|EudoraWeb|Googlebot-Mobile|hiptop|IEMobile|KYOCERA/WX310K|LG/U990|MIDP-2.|MMEF20|MOT-V|NetFront|Newt|Nintendo\ Wii|Nitro|Nokia|Opera\ Mini|Palm|PlayStation\ Portable|portalmmm|Proxinet|ProxiNet|SHARP-TQ-GX10|SHG-i900|Small|SonyEricsson|Symbian\ OS|SymbianOS|TS21i-10|UP.Browser|UP.Link|webOS|Windows\ CE|WinWAP|YahooSeeker/M1A1-R2D2|iPhone|iPod|Android|BlackBerry9530|LG-TU915\ Obigo|LGE\ VX|webOS|Nokia5800).* [NC]
RewriteCond %{HTTP_user_agent} !^(w3c\ |w3c-|acs-|alav|alca|amoi|audi|avan|benq|bird|blac|blaz|brew|cell|cldc|cmd-|dang|doco|eric|hipt|htc_|inno|ipaq|ipod|jigs|kddi|keji|leno|lg-c|lg-d|lg-g|lge-|lg/u|maui|maxo|midp|mits|mmef|mobi|mot-|moto|mwbp|nec-|newt|noki|palm|pana|pant|phil|play|port|prox|qwap|sage|sams|sany|sch-|sec-|send|seri|sgh-|shar|sie-|siem|smal|smar|sony|sph-|symb|t-mo|teli|tim-|tosh|tsm-|upg1|upsi|vk-v|voda|wap-|wapa|wapi|wapp|wapr|webc|winw|winw|xda\ |xda-).* [NC]
RewriteCond %{HTTPS} !on
RewriteCond %{DOCUMENT_ROOT}/wp-content/cache/supercache/%{SERVER_NAME}/$1/index.html -f
RewriteRule ^(.*) "/wp-content/cache/supercache/%{SERVER_NAME}/$1/index.html" [L]
# END WPSuperCache
# BEGIN WordPress
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
# END WordPress
order allow,deny
deny from all
Options -Indexes
# Enable expirations
ExpiresActive On
# Default directive
ExpiresDefault "access plus 1 month"
# My favicon
ExpiresByType image/x-icon "access plus 1 month�
# Images
ExpiresByType image/gif "access plus 1 month"
ExpiresByType image/png "access plus 1 month"
ExpiresByType image/jpg "access plus 1 month"
ExpiresByType image/jpeg "access plus 1 month"
# CSS
ExpiresByType text/css "access 1 month�
# Javascript
ExpiresByType application/javascript "access plus 1 month"
# FileETag None is not enough for every server.
Header unset ETag
# Since we
```
* re sending far-future expires, we don’t need ETags for static content.
# developer.
yahoo.com/performance/rules.html#etags FileETag None
*
* # force deflate for mangled headers
# developer.yahoo.com/blogs/ydn/posts/2010/
12/pushing-beyond-gzipping/ SetEnvIfNoCase ^(Accept-EncodXng|X-cept-Encoding|X{15}|~{15}|-{15})$ ^((gzip
|deflate)\s*,?\s*)+|[X~-]{4,13}$ HAVE_Accept-Encoding RequestHeader append Accept-
Encoding “gzip,deflate” env=HAVE_Accept-Encoding
* # HTML, TXT, CSS, JavaScript, JSON, XML, HTC:
FilterDeclare
COMPRESS FilterProvider COMPRESS DEFLATE resp=Content-Type $text/html FilterProvider
COMPRESS DEFLATE resp=Content-Type $text/css FilterProvider COMPRESS DEFLATE
resp=Content-Type $text/plain FilterProvider COMPRESS DEFLATE resp=Content-Type
$text/xml FilterProvider COMPRESS DEFLATE resp=Content-Type $text/x-component
FilterProvider COMPRESS DEFLATE resp=Content-Type $application/javascript FilterProvider
COMPRESS DEFLATE resp=Content-Type $application/json FilterProvider COMPRESS
DEFLATE resp=Content-Type $application/xml FilterProvider COMPRESS DEFLATE resp
=Content-Type $application/xhtml+xml FilterProvider COMPRESS DEFLATE resp=Content-
Type $application/rss+xml FilterProvider COMPRESS DEFLATE resp=Content-Type $
application/atom+xml FilterProvider COMPRESS DEFLATE resp=Content-Type $application/
vnd.ms-fontobject FilterProvider COMPRESS DEFLATE resp=Content-Type $image/svg
+xml FilterProvider COMPRESS DEFLATE resp=Content-Type $application/x-font-ttf
FilterProvider COMPRESS DEFLATE resp=Content-Type $font/opentype FilterChain
COMPRESS FilterProtocol COMPRESS DEFLATE change=yes;byteranges=no
*
# Legacy versions of Apache AddOutputFilterByType DEFLATE
text/html text/plain text/css application/json AddOutputFilterByType DEFLATE
application/javascript AddOutputFilterByType DEFLATE text/xml application/xml
text/x-component AddOutputFilterByType DEFLATE application/xhtml+xml application/
rss+xml application/atom+xml AddOutputFilterByType DEFLATE image/svg+xml application/
vnd.ms-fontobject application/x-font-ttf font/opentype `
* About the php errors, these are the most common:
* ```
[21-Jul-2013 21:12:47] WordPress database error You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '-pinger_log' at line 1 for query select count(*) from wp_pingomatic-pinger_log made by do_action('wp_ajax_nopriv_wordfence_doScan'), call_user_func_array, wordfence::ajax_doScan_callback, wfScan::wfScanMain, wfScanEngine->go, wfScanEngine->doScan, wfIssues->getSummaryItems, wfIssues->updateSummaryItems
/home2/comebac7/public_html/wowcast/wp-includes/error_log:
[25-Apr-2013 23:07:28] PHP Fatal error: require() [function.require]: Failed opening required 'ABSPATHWPINC/option.php' (include_path='.:/usr/lib64/php:/usr/lib/php:/usr/share/pear') in /home2/comebac7/public_html/wowcast/wp-includes/functions.php on line 8
[16-Jul-2013 11:42:23] PHP Fatal error: Call to undefined function _deprecated_file() in /home2/comebac7/public_html/wowcast/wp-includes/registration-functions.php on line 7
/home2/comebac7/public_html/wowcast/error_log:
[07-Apr-2013 23:43:09] WordPress database error MySQL server has gone away for query SELECT * FROM wp_inlinks_data WHERE post_id > 0 made by require('wp-blog-header.php'), require_once('wp-load.php'), require_once('wp-config.php'), require_once('wp-settings.php'), do_action('init'), call_user_func_array, inlinks_initialize, inlinksObject->initialize
```
* I also need to mention, that after getting hacked several times, i changed a
lot of the files to 0444, including .htaccess
* Thank you guys!
* Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
In reply to: [HTTP/1.1 500 Internal Server Error after malware attack](https://wordpress.org/support/topic/http11-500-internal-server-error-after-malware-attack-1/)
* Thread Starter [dota2hook](https://wordpress.org/support/users/dota2hook/)
* (@dota2hook)
* [13 years, 3 months ago](https://wordpress.org/support/topic/http11-500-internal-server-error-after-malware-attack-1/#post-3448134)
* The one error on line 192:
* ```
foreach ( $quant as $unit => $mag )
if ( doubl// Mysql string Year
$mm = substr( $mysqlstring, 8, 2 ); // Mysql string Month
$md = substr( $mysqlstring, 5, 2 ); // Mysql string day
$day = mktime( 0, 0, 0, $md, $mm, $my ); // The timestamp for mysqlstring day.
$weekday = date( 'w', $day ); // The day of the week from the timestamp
if ( !is_numeric($start_of_week) )
```
* that are lines 190 to 195 and i dont see any problem..
* PS. On Dota2Hook.de i have been deleting the eval code, and so it doenst come
back i have made 0444 Permissions. (because i have no idea where the backdoor
is + i am suspecting bluehost for it)
* Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
In reply to: [HTTP/1.1 500 Internal Server Error after malware attack](https://wordpress.org/support/topic/http11-500-internal-server-error-after-malware-attack-1/)
* Thread Starter [dota2hook](https://wordpress.org/support/users/dota2hook/)
* (@dota2hook)
* [13 years, 3 months ago](https://wordpress.org/support/topic/http11-500-internal-server-error-after-malware-attack-1/#post-3448133)
* Doesnt look that nicely, i can try to get it into another progrem if you sugest
one. [http://pastebin.com/pgqgwe3x](http://pastebin.com/pgqgwe3x)
Viewing 3 replies - 1 through 3 (of 3 total)