Viewing 26 posts - 1 through 26 (of 26 total)
  • Author
    Posts
  • #740553

    Dear Support,

    Wordfence found critical problem in the php file

    wp-content/themes/enfold/config-templatebuilder/avia-template-builder/php/html-helper.class.php

    Please let me know if I have to delete the file and upload a new one or upgrade all the theme files.

    Regards

    Stelios

    #740556

    Same problem. Seems like the link they use got hacked. The link (http://www.link.at/) DON’T VISIT ATM is mentioned as a comment.

    //fallback for previous default input link elements: convert a http://www.link.at value to a manually entry
    if(strpos($element[‘std’], ‘http://’) === 0) $element[‘std’] = ‘manually,’.$element[‘std’];

    Nothing to worry about as long as you don’t visit the website. Most browsers will block the site anyways.

    • This reply was modified 7 years, 1 month ago by dirkvisser. Reason: changed websites to browsers
    #740568

    i have the same problem today on 8 Enfold websites :( What shall i do now?

    #740582

    Same problem on 6 Enfold sites, all using wordfence. Any ideas to fix this?

    #740584

    Yep, same warning over here. What to do about it? Firefox blocks the whole url now.

    #740585

    I also have this problem.

    “Adding issue: File contains suspected malware URL: /home/thingsc/www/die-barracudas.ch/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/php/html-helper.class.php”

    I deleted the file with wordfence and now my enfold website is down :-((((

    ****
    Warning: require_once(/home/thingsc/www/die-barracudas.ch/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/php/html-helper.class.php) [function.require-once.php]: failed to open stream: No such file or directory in /home/thingsc/www/die-barracudas.ch/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/php/template-builder.class.php on line 111

    Fatal error: require_once() [function.require.php]: Failed opening required ‘/home/thingsc/www/die-barracudas.ch/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/php/html-helper.class.php’ (include_path=’.:/usr/local/share/pear:/home/thingsc/www/die-barracudas.ch/wp-content/plugins/mailchimp-widget/lib’) in /home/thingsc/www/die-barracudas.ch/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/php/template-builder.class.php on line 111

    ****
    Can you please advice what to do?

    #740586

    poppenhaeger you have to reupload the files, the theme needs this file to work.

    #740587

    Hi there,

    same problem also,

    what if we just take out the suspected url from the comments? would that do the trick?

    thnx

    #740588

    eny4W: you mean uploading the newest enfold theme via ftp and replacing the folder: wp-content/themes/enfold with the theme files?

    #740590

    Hi,

    i have the same problem, and after looking into source i suggest 2 things:

    .) don’t delete it
    this link ist mentioned in a comment in the file

    .) Kriesi: please update the theme and replace the url http://www.l**k.at to another placeholder url
    http://www.l**k.at is blacklisted as a malware site, that’s why wordfence sees the theme corrupted.

    Best,
    Stefan
    aumayermedia.at

    #740591

    yep, this would do the trick for now

    #740593

    Same issue here, need a fix!

    #740599

    Is there anything we should be doing immediately? Is it a problem in the short term?

    #740606

    Got several clients mailing (in distress), thinking they got hacked.
    All got the same Wordfence message.

    I hope this will be fixed quickly.

    #740652
    #740665

    same problem here, please assist!!

    #740668

    Hey!

    Please see the link i posted above. As mentioned, we will add the fix to upcoming update.
    Malicious link is in commented line therefore has no affect at all on your sites.

    Regards,
    Yigit

    #740683

    Yes, thanks. The link worked. No worries any more.

    #740749

    Where can I locate “enfold/config-templatebuilder/avia-template-builder/php/html-helper.class.php file” to edit? Sorry, this is very new for me.

    #740752

    Hey!


    @jtuselton
    You can access the file via FTP. If you would like to make the changes for you, please start a new thread and attach FTP logins in private content field. If you post them here, they will be visible to creator of this thread as well

    Best regards,
    Yigit

    #740754

    So, you need my login for my hosting account, correct? BlueHost?

    #740756

    Hey!

    Yes, we need to access files on your server to edit them. But again, please post them in a new thread in private content field.

    Regards,
    Yigit

    #740772

    Thanks Yigit, here’s the link to the new thread. https://kriesi.at/support/topic/possible-malware/

    #740788

    My colleague deleted the file, I’ve uploaded it for him but when accessing the admin section of the site we get the following error:

    Fatal error: Class ‘AviaHtmlHelper’ not found in /var/www/vhosts/website.com/httpdocs/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/blog.php on line 88

    #740792

    Hi!


    @steetiehj
    Please re-install the file and applied the changes explained here – https://kriesi.at/support/topic/wordfence-found-a-suspected-malware-in-an-enfold-php-file/#post-740608
    If you would like us to look into it, please start a new thread and attach temporary admin logins and FTP logins in private content field

    Best regards,
    Yigit

    #740800

    resolved, thanks!

Viewing 26 posts - 1 through 26 (of 26 total)
  • The topic ‘suspected malware’ is closed to new replies.