morfsx

Sorry was out for lunch!

I think you best bet is to contact your hosting support, make sure everything it set up correctly with regards to rewriting and .htaccess etc.

Sorry I can’t be of more help.

I see you are with Servage. In their control panel under ‘Web Server -> Set .htaccess Files’ is that set to enabled?

The wordpress .htaccess should be in the blog directory.

You should be able to keep the www redirect .htaccess in your root and let that handle all non wordpress stuff as the .htaccess in the blog directory should have priority over that.

WordPress should redirect to the URL you set it up to i.e. it would auto forward from non www to www.

Just found that ALL the main plugins files have a code injected as the first line, again encoded.

Just had this reported on one of our sites.

There was spam link injection in the footer that came from a php file uploaded to wp-content/uploads/2009/01 called fonction.php and wp-links.php (These are base64 encoded, haven’t looked at them yet)

The blog is running 2.7.1

Installed Plugins:

Akismet 2.2.4
All in One SEO Pack 1.5.7
Category Replacement Widget 0.5
Get-a-Post R1.4
Homepage recent entry 1.0
MailPress 1.9.1
Secure and Accessible PHP Contact Form v.2.0WP B20080731
Sticky Menu 1.41
wp-Table 1.52
WP Shopping Cart 3.6.8 RC1