Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • September 5, 2018 at 1:56 pm #1006135
    karakoch

    Hi,

    our website regularly redirects to malicious sites. What is the reason? Is there interest in the theme?

    [02-Sep-2018 09:00:05 UTC] PHP Warning:  scandir(): (errno 2): No such file or directory in /home/modelist/public_html/wp-content/themes/enfold/framework/php/class-framework-widgets.php on line 3019
[02-Sep-2018 11:05:13 UTC] PHP Warning:  scandir(/home/modelist/public_html/wp-content/uploads/avia_instagram_cache/): failed to open dir: No such file or directory in /home/modelist/public_html/wp-content/themes/enfold/framework/php/class-framework-widgets.php on line 3019
[02-Sep-2018 11:05:13 UTC] PHP Warning:  scandir(): (errno 2): No such file or directory in /home/modelist/public_html/wp-content/themes/enfold/framework/php/class-framework-widgets.php on line 3019

    Filename: wp-includes/class.wp.php
    • File Type: Not a core, theme, or plugin file from wordpress.org.

    • Details: This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The text we found in this file that matches a known malicious file is: extract(wp_temp_setupx($tmpcontentx))

    The infection type is: Backdoor:PHP/WP-VCD
    Description: A backdoor known as WP-VCD

    • Filename: wp-includes/theme-compat/header-embed.php
    • File Type: Core
    • Bad URL: http://cdn.eeduelements.com/jquery.js

    • Details: This file contains a URL that is currently listed on Wordfence’s domain blacklist. The URL is: http://cdn.eeduelements.com/jquery.js

    • Filename: wp-includes/theme-compat/header.php
    • File Type: Core
    • Bad URL: http://cdn.eeduelements.com/jquery.js

    • Details: This file contains a URL that is currently listed on Wordfence’s domain blacklist. The URL is: http://cdn.eeduelements.com/jquery.js

    • Filename: wp-includes/theme-compat/header-embed.php
    • File Type: Core

    • Details: This WordPress core file has been modified and differs from the original file distributed with this version of WordPress.

    • Filename: wp-includes/theme-compat/header.php
    • File Type: Core

    • Details: This WordPress core file has been modified and differs from the original file distributed with this version of WordPress.

    September 6, 2018 at 4:09 am #1006407
    Ismael

    Hey Gökhan,

    Thank you for using Enfold.

    You have to delete the reported files manually and then override your whole WordPress installation with the latest version. They seem to be related to the core files, not the theme. The warnings or notices from the class-framework-widgets.php are not critical but they’re going to be taken care of in the next patch.

    Best regards,
    Ismael

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.