Hi, vadox, & welcome.
First, you didn’t provide an url to your site so we can have a look. Therefore, anything any of us might say is w/o the benefit of that knowledge. Often members of the support team are able to very quickly pinpoint a problem when an url is provided.
Please try disabling all caching plugins. You might wish to check your .htaccess file for caching entries as well, & comment them out, if present. If you’re unsure, copy-&-paste it into your next reply so we can have a look.
Having said all that, the last gentleman I worked w/who was having similar difficulties had a compromised site. There was an index.php in his wp-content folder that had bad code in it as opposed to
simply:
// silence is golden
which is what should’ve been there.
You might wish to look (or have someone look for you) if disabling your caching plugin doesn’t help, just to ensure your site hasn’t been hacked.
Thread Starter
vadox
(@vadox)
Thanks for the suggestions! My website URL is http://www.velfilm.com, I apologize for completely forgetting to include it. I have tried disabling all plugins (I don’t think I’ve been using any caching plugins, anyway). That didn’t help.
I checked the .htaccess file. Here is a copy of its contents:
# Use PHP54 Single php.ini as default
AddHandler fcgid54-script .php
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress
The index.php file inside wp-content directory seems to be fine (it contains “// silence is golden” and nothing else out of the ordinary).
Is there anything else I can do to see if my site has been hacked, or if this is an issue related to something else? Thanks for your help!
Hello again, vadox. Thanks for providing a link to your site. I’ve had a look, & it appears you’re correct that you don’t have any caching plugins running at this time. I also had a look at your .htaccess file, & I don’t see anything amiss there–was that the .htaccess file in your velfilm folder–as opposed to the 1 in your wpvelfilm folder? If not, then I’d like to look at the 1 located in your velfilm.com folder (perhaps called root, public_html, or htdocs?).
1 thing you might wish to consider is to consult your error logs, both in your hosting control panel & in your wpvelfilm folder & subfolders, particularly w/an eye toward the date of your last update to see if you notice any errors. You might also wish to contact your hosting provider & inquire if they notice any errors in the server log around that time. Shared hosting plans now are almost all running ModSecurity, & sometimes the way they configure it doesn’t play so nice w/WordPress or other content management systems (CMS’s) like Drupal or Joomla!, either, for that matter. They can change that either on a site- or server-wide basis–perhaps even on all servers, if they consistently see a ModSecurity error that occurs when these CMS’s are updated.
I did look at the website source pretty closely, & I personally don’t see any indication of compromise, though that isn’t always a good indicator (would that it were). If someone were to put a gun to my head & ask me what the problem was, & said that if I were wrong, I’d end up w/o a brain, I guess I’d first tell them I operate like that normally anyway, & then I’d likely guess that the difficulty was the fact that ModSecurity was improperly configured on the part of your hosting provider.
Please let us know if you have additional questions, if this did (or did not) help, & if there’s anything further we can do to assist.
Thread Starter
vadox
(@vadox)
I checked, and it looks like the contents of .htaccess file in my root directory are identical to the one in the wpvelfilm directory where my WordPress installation resides, so I don’t think it’s what’s causing the problem. I’ll try to contact my web hosting provider to see if there could be an issue with ModSecurity settings. Thanks again for your help!
