Viewing 16 posts - 1 through 16 (of 16 total)
  • Author
    Posts
  • #469901

    I’ve been seeing this weird code in my Word Press dashboard ever since I updated my client’s website to Word Press 4.2.2 (also recently updated to the latest version of Enfold):

    Recv failure: Connection reset by peer
    Warning: Invalid argument supplied for foreach() in /home/chomifma08/public_html/wp-content/themes/enfold/framework/php/auto-updates/class-pixelentity-theme-update.php on line 49

    Not sure what this is about. Any ideas? Thanks.

    #470288

    Hi vblaes!

    please try to update the theme again (via FTP).
    If that does not help you might need to delete all theme files and get a fresh copy from your themeforest account, as there seem to be some corrupted files.

    Cheers!
    Andy

    #470316

    Hi, Andy,

    I thought I already deleted an older version of the template (in our file system through Godaddy) and then downloaded the newest version afterwhich I uploaded it through Godaddy (the hosting company we use). I’m wondering if there might still be an older version of the theme still in the files.

    I’m going to get ahold of Godaddy and see what’s up.

    Thanks for getting back to me. I’ll be back in touch if I need further assistance. Valarie

    • This reply was modified 9 years, 5 months ago by vblaes.
    #470336

    Hey!

    We will keep the thread open and will wait to hear from you. Until you reply to this thread, it will be on hold :)

    Regards,
    Yigit

    #471921

    Hi,

    I installed Sitelock on the website, and a couple of errors came up that I thought I’d share:

    Category: Suspicious content Status:active Type:note
    Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2
    Note Info: External iframes found : about:blank found on sample pages ( http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2 )
    Description: We have detected iframes to external urls on your site. While there are legitimate uses for this, it is also commonly used by hackers to insert content into your page. We recommend you check the urls in this iframe and make sure they are a trusted source.
    Action:Check the url to make sure it is something you recognize and are ok with some of your traffic being sent there. If you do not recognize it, remove the iframes and links throughout your website.

    Page URL: http://ifmarichmond.org
    Note Info: Cookies found with the following names : PHPSESSID
    Description: We have detected cookies on your site. Cookies are generally used for keeping track of information as a user browses around a site. There is no particular security issue however if you do not recognize a cookie name it may be worth investigating.

    Do you have a solution to either of these?

    Thanks. Valarie

    #471955

    OK, I spent a couple of hours on the phone with Godaddy. They found a couple of files that were malicious (not good!). I deleted Enfold from WordPress and tried uploading the zipfile in my dashboard, and it wouldn’t let me! I got a very weird error (got a page that said,”Oops that page can’t be found!”). http://www.ifmarichmond.org/wp­admin/update.php?action=upload­theme 1/1

    Godaddy was concerned about uploading the theme via ftp.

    I need help uploading the theme. Any documentation you can provide ASAP? My client relies on their website for memberships and is an ecommerce site.

    Help!!!

    Thanks.

    #472471

    Hey!

    It’s the same procedure as with any other theme but we have a video tutorial on how to do that here, http://kriesi.at/documentation/enfold/videos/.

    Cheers!
    Elliott

    #472685

    I was informed that several of the files were not only corrupted, but there were some files appeared to have been possibly hacked. I installed Sitelock on the site, though it appears my client needs a heavier-duty version.

    Could this be what is happening?

    Envato Targeted by DDoS Attack, WordPress Theme Authors Report Major Decline in Sales

    http://wptavern.com/envato-targeted-by-ddos-attack-wordpress-theme-authors-report-major-decline-in-sales

    If so, do you have a fix or patch coming out? This is very disconcerting!

    Thank you.

    #472785

    I did everything that was recommended and am still seeing the following error:

    Reset by peer
    Warning: Invalid argument supplied for foreach() in /home/chomifma08/public_html/wp-content/themes/enfold/framework/php/auto-updates/class-pixelentity-theme-update.php on line 49
    Recv failure: Connection reset by peer
    Warning: Invalid argument supplied for foreach() in /home/chomifma08/public_html/wp-content/themes/enfold/framework/php/auto-updates/class-pixelentity-theme-update.php on line 49

    Need your assistance. Thank you.

    #473238

    Hi!

    The auto update from the envato api is having some issues at the moment and hopefully will be fixed in the next few days. For now, try to remove the API data in the Theme Updates panel then reset the page. https://kriesi.at/support/topic/very-slow-admin-back-end/#post-469317

    Cheers!
    Ismael

    #474642

    Did another Sitelock scan on our website. Here’s what came up:

    Category: Suspicious content Status:active Type:note
    Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2
    Note Info: External iframes found : about:blank found on sample pages ( http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2 )
    Description: We have detected iframes to external urls on your site. While there are legitimate uses for this, it is also commonly used by hackers to insert content into your page. We recommend you check the urls in this iframe and make sure they are a trusted source.
    Action:Check the url to make sure it is something you recognize and are ok with some of your traffic being sent there. If you do not recognize it, remove the iframes and links throughout your website.

    Category: Suspicious content Status:active Type:note
    Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0
    Note Info: External link found in javascript : http://support.kreaturamedia.com/faq/4/layerslider-for-wordpress/#group-13&entry-undefined found on sample pages(
    http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSli
    der/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0 ). The javascript executed starts with :eval(function(p,a,c,k,e,d){e=function(c){return(c<
    Description: We have detected external urls after executing javascript found on your pages. Hackers may attempt to hide malicious content by encoding or obfuscating javascript using code functions such as explode or eval. It is also common for 3rd party software/application providers to obfuscate their javascript to attempt to protect their source code.
    Action:Check the url to make sure it is something you recognize and are ok with the potential of your traffic being sent there. You can find the URL location of the javascript executing the external link in the detection report output.

    I noticed in the theme there is a newer version of Layer Slider. Is there going to an update to reflect this? I am very concerned about these problems being found on my client’s website.

    Thank you.

    #475770

    Hey!

    please upgrade to Enfold v3.2.3. and try to deactivate all plugins, as one might cause the issue. Did you check your iFrames you are using? and are you sure they are from a safe source?

    Cheers!
    Andy

    #476027

    The one that is on the website says it’s version 3.2 which is what I have.

    I downloaded what’s on there, but it says it’s 3.2.3 in the txt file, so I’ll give that a shot. Very confusing.

    Please keep this thread open. Thanks. Valarie

    • This reply was modified 9 years, 5 months ago by vblaes.
    #476315

    Hi!

    As mentioned earlier there has beens some problems on Envatos side so the info on the download page might not have been correct, but the downloaded files should be and if it reads 3.2.3 it is the latest one. Please let us know how you get on with updating to the latest version.

    Cheers!
    Rikard

    #478766

    I saw there was an update to WordPress. The weird thing is it appears that it was automatically updated (I know some Word Press sites do this, while others don’t. Previous to this WP update, I had to manually update it, which is a bit odd…). The latest WP update hopefully fixed some of the issues that were happening:

    WordPress 4.2.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.

    WordPress versions 4.2.2 and earlier are affected by a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site. This was initially reported by Jon Cave and fixed by Robert Chapin, both of the WordPress security team, and later reported by Jouko Pynnönen.

    We also fixed an issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft. Reported by Netanel Rubin from Check Point Software Technologies.

    Our thanks to those who have practiced responsible disclosure of security issues.

    WordPress 4.2.3 also contains fixes for 20 bugs from 4.2. For more information, see the release notes or consult the list of changes.

    #478817

    Hi!

    Solved the problem? Something else you still need?

    Regards,
    Basilis

Viewing 16 posts - 1 through 16 (of 16 total)
  • You must be logged in to reply to this topic.