cacoline

Thank you very much! That’s exactly what I was looking for. I had found the WordPress function, but didn’t know how to use it.
I didn’t know how to write this part of code:
. '/' . $themecss; ?>
It works perfectly!

@steve D : I am in the same situation as you. My ftp and database passwords have been changed, and I cannot modify my database password.

Thanks to easysale to advise the use of the WordPress file monitor plugin.
I found that I have been hacked again. In fact most of the index files that are on my website haven been modified. It’s not only WordPress, but any index.php that can be found.

Thanks for the answer and advice! ??

Do you, by any chance, know which files are modified?

this is also interesting:
https://blog.unmaskparasites.com/2010/04/11/network-solutions-and-wordpress-security-flaw/

Also, every time I try to look at the details of a plugin upgrade, I get this message:

An Unexpected HTTP Error occurred during the API request.

@lepensky : If you have enabled your permalinks, you cannot access your files by FTP through Network Solutions. You need to either use a FTP client or reset your permalinks to the default settings.

A little update.
I have 2 blogs using wordpress. One of them is the 2.9.2 version and the other is the 2.9.1 version. Both of them have been hacked, the only difference is that it is almost not visible in the 2.9.1 version. The site URL has been changed in the database but nothing happens in the front end of the site and the back end is still accessible…

I have the exact same problem as all of you. Yesterday I changed the site url in the database, change all of my logins and passwords, and I also made a redirection using the .htaccess file in order to have more time to understand what happened. Today when I woke up, I find that my website is online with the same problem. What I don’t understand is that I had left my site with the redirection so it should not be online today!
Do the problems come only from the site url? I have been looking at the files and I found nothing in them.

Good luck to all of us, I’ll be reading you!

Ok, You will be happy to read that I realised that I had not understand what the codex was about. Indeed, it had nothing to do with my problem.

Well, I don’t know how to explain my problem differently than what I have done until now [maybe because of my English (I’m French)]. Anyway, I moved my wordpress to a subdirectory and made a redirection to it.
I do believe you when you say it has nothing to do with permalinks, htaccess and FTP. I guess the problem comes from my provider since it works with ALL the FTP clients I’ve tried. So…

Thank you again for your time and patience! ??

Well, I contacted my provider and they told me what I already know. They told me “there is a problem with the code that is in the .htaccess file when you enable the permalinks, you should ask WordPress team about this. Maybe they have an alternate code, if not, the second solution is to put WordPress in a subdirectory.”
I already knew that, and there is a topic in the codex about this problem (if I understand it well), but I don’t know how to fix this. I guess it’s the mode_rewrite that causes this problem.

Thank you anyway for your answers.

With permalinks:
When I use a FTP client, it works. When I connect through my hosting provider, it says “access denied”.
Without permalinks: everything works.
I’m on Network Solutions, I think I’m going to contact them about this.
But if you have any idea, I’d like to hear them!