adamt07

The exploit scanner plugin is useful for spotting problems like this throughout the core files. May want to check out just as a future reference

I didn’t see any problems. Pages loaded fine.

what theme are you using?

if you’re familiar with html it shouldn’t be too difficult. Check the header.php file and look for something similar to the following:

<div class=”blogtitle”><?php bloginfo(‘name’); ?></div>

<div class=”description”><?php bloginfo(‘description’); ?></div>

The first line shows the blog title and is often wrapped in a link to the homepage. The second line shows the tagline of the blog. You should be able to add any content you want to show in the theme directly under those lines…

You need to close the php tags and reopen them, like:

<?php
?if(eregi(“application/x-shockwave-flash”, $_SERVER[‘HTTP_ACCEPT’]))
?{ ?>

<object classid=”….. This is the flash object etc…

<?php } else { ?>

<img src=”my_folder/my_image.jpg”>…. this is the image path.

<?php } ?>

which version of WP are you using? 2.7 should delete that folder for you when you delete the plugin (not just deactivate). You could use an FTP program, like filezilla, to manually remove the folder. But as far as editing the CSS file, I don’t think the built-in editor covers that. It will let you edit the php file that runs the plugin but not the CSS file. You could edit it and then re-upload it with filezilla, or use a program like PSPad to edit it via FTP and re-save it directly to the server.

I guess malware script would have been more appropriate…

Check your database user privileges, you need to have appropriate permissions to add/delete/alter data in the tables.

You just want to remove the blog from the rest of the site?

You might want to check out the WP-Cache plugin. It will cache the pages, making for a much faster load time

works fine for me in IE7. Don’t have IE8..

are you wanting to use php to detect the player? I just read this on php flash detection:

<?php
if(eregi(“application/x-shockwave-flash”, $_SERVER[‘HTTP_ACCEPT’]))
{
PRINT_FLASH_CONTENT
} else {
PRINT_IMAGE_FILE
}
?>

I took the comments out but you can find that (almost) exact same snippet at https://www.sitepoint.com/article/techniques-unearthed/5/

As far as using javascript you’d just have to search for it a little bit. I’m not that great with javascript :/

If you mean just delete the plugin then you can delete it from the plugins/ folder, after deactivating it. WP 2.7 will delete the folder for you, removing the need to use FTP. If you mean deleting from the theme then locate this line:

<?php include (ABSPATH . ‘/wp-content/plugins/featured-content-gallery/gallery.php’); ?>

in your theme – most likely in either the header.php or the top of the page.php. Just remove that line or place anywhere else you need the gallery

if it’s anything similar to a bug that hit mine a couple weeks ago (the gumblar script) you may want to check the images folder for a script labeled image.php and delete it. There’s a plugin called “exploit-scanner” that could probably help you alot.

A quick look at the source shows that the spongewars theme is located in the themes/spongewars directory. And the transitsurf is in the themes/transitsurf_v2 directory. My guess would probably be custom themes. They don’t look familiar to me anyway. But wordpress themes are a dime a dozen so you may could find them somewhere