Yes I know that is one cheesy title for this blog post but that is how I feel after today’s escapade! I knew this morning when I woke up that today was a work from home day and I could catch up on all the SITS blog challenge activities. Well that balloon deflated very quickly!
The first sound of an air leak:
Before I took my daughter to school I thought wouldn’t it be a lovely gesture to post my husband’s link on learning all about twitter to all my new blogging buddies! So I traveled over to his site www.thewpnovice.com and nothing would appear<—this is where i later learned this action is called WSOD—> white screen of death! So I texted him:
Upon further observation all my other sites were still working so it must be something to do with his site. So out the door I bolt to take my daughter to school. Get gas in 30 degree weather or become stranded on side of road in 30 degree weather. Approxiametly 20 minutes later I arrive home.
The second sound of an air leak:
After getting another cup of coffee plopping myself down at my desk I receive a text…”my site has been hacked…its redirecting to joe blow’s foreign site in Zimbabwe” <— This is where the air slowly leaks out of the balloon and I am left slumping at my desk! This can’t be happening! I host two other clients sites on my hosting account plus my blog!!! Chics with a view….surely it hasn’t been compromised…it’s still working! So I quickly go to my ftp server and look at the php files in CWAV and there it is that nasty little bastard of a virus is in EVERY last php file on every site that I host! I’m not very pretty when I cry so I will leave this part out.
So I do what any other techie does…I search the forums. Who else has had this problem and fixed it! Obviously this is pretty common especially with any Content Management System that runs php files. Anywho after hours and hours of research I found that this isn’t just a quick fix. So I called my hosting account and asked them what my options are. Their reply was oh this sucks but we can easily fix it with a submission support ticket to replace your database with a backup. So I submitted my ticket and waited and waited and waited. Around 5 oclock I had enough (wait 24 hours my ass!) thats like having lice and telling someone to wait 24 hours to get rid of it! So I called them up again and guess what…they fixed it while I was on the phone…so reiterate why I had to submit a ticket 8 hours ago. ARGHHH.
Long story short, if you are wordpress user or any cms like joomla where php files are needed…………………UPDATE YO SHIT!
I’m talking plugins, themes, system updates, stray away from foreign sites that your are not sure about, I’m telling you if I had not caught this in time I would have been up creek without a paddle!
"Why that will never happen to me"
-Dawn with a Rant!
btw…quick update the virus looks begins like this with a bunch of scrambled code following and is embedded usually in the beginning of php files: