persistent

Yes, we found that as well. It worked fine, then going to 7.0 or 1 or 2 it finally at 7.2 actually installed without a fatal error but the page for settings is blank.

But Jetpack did the same. Fatal error no install in 7.0 and 7.1, however installed with 7.2 but blank page and it freezes the system. At least now, Cloudflare doesn’t freeze the system with blank pages (no longer can allows going to any other admin page and requires its rename via files manager or ftp to clear it).

Thanks.

New post not in; lots more errors. (I also have the paid Thumbs and Excerpts add-on)

[20-09-2017 23:12:21] [Error] WPRSS > 2:
Sorted:

[21-09-2017 00:12:22] [Error] WPRSS > 2:
Sorted:

[21-09-2017 01:12:21] [Error] WPRSS > 2:
Sorted:

[21-09-2017 02:11:10] [Error] WPRSS > 2:
Sorted:

[21-09-2017 03:11:14] [Error] WPRSS > 2:
Sorted:

[21-09-2017 04:11:17] [Error] WPRSS > 2:
Sorted:

Do you mean via WHM/or hosting people or just the cPanel?

In cPanel, there are no cron jobs at all. Never have been any.

Thanks.

5:25 pm CDT
After 3 more tries and waiting, I see the latest post from 3am Sept 20th.

But another debug error occurred with it:
[20-09-2017 22:11:06] [Error] WPRSS > 2:
Sorted:

Thanks… but RSS aggregator and wp both updated within a few hours of each other and I’ve been using it for YEARS – so today, nothing new will come in.

I did all of the above…. nothing wrong anywhere.

Resaved all the settings in RSS agg – manually pulled new items.

After the update of RSS Aggregator, then the messages began appearing in the debug log as above. There are now 58 of them starting from update of your plugin.

[19-09-2017 21:18:19] [Error] WPRSS > 2:
Sorted:
until I manually pulled with no success:
[20-09-2017 20:56:14] [Error] WPRSS > 2:
Sorted:

Cleared log and clicked the blue Update all feeds (only have 1) and then got the new entry:
[20-09-2017 21:20:13] [Error] WPRSS > 2:
Sorted:

Nothing else has changed and all is up-to-date. Only updating the plugin.

???

Appears to work perfectly.

Thank you again!

All sites updated and tested.

Thank you very much, nobita.

I appreciate all the work and consideration – especially since it just updated this evening as well.

I will attempt it and await the fix in a formal update.

We do like your theme.

Thank you nobita.

I do not code php. I just noted that the url is only wrong using Raindrops theme. We switched to Raindrops about November last year and thought the problem a few were having was their system. But new members can’t get in because they cannot set a password, so one of the web people was just sending them a password.

I am not sure how we can repair this issue without changing any core wordpress files? I replaced ALL the core files as part of troubleshooting.

I see how it works above, but do not know why at all anything would make it convert the ampersand? But now what?

Are you saying choose another site type – Network versus Single?

The ascii converted to the ampersand. It’s: & # 0 3 8 ;
&

Great theme, by the way — thank you for that.

Woah! think I’ll wait until late tomorrow.

Same problem just 45 mins ago and blew up a site that took me a while to repair. Used File Manager to remove all but the .htacess. Whew. Got caught in “Core Maintenance Mode” and error connecting to database.

Thanks.

I found a copy of 2.0 tucked in an old folder…

All is great again, but won’t be updating any of the other sites for awhile.

Thanks Much – Will be waiting.

Thank you, mvandemar, I appreciate the expert advise. I would have always agreed with your first line. Makes no sense.

It took a day, Kaspersky found and removed 149 instances of the “HEUR:Trojan.Script.Generic” trojan in the backup files on my drive. Also some other types from .tar.gz files from another site backup emails.

I can’t tell you what it was, but I’m getting no more file change notices after 12 hours of scans. Cleaned the other machine as well.
Bizarre.

Notetab Pro is a bit different, but still should not matter.

I’ve not done Linux OS before, but should. I don’t run any server setups either. I’ll have to do something as the infected folder is there and we’ll have to get it off somehow. Put on BPS Pro to stop any further files changes due to the groupdocs plugin – if indeed that’s what did it.

Thanks again.

Addendum.

DELETE IT FROM YOUR COMPUTER: Probable COMPUTER VIRUS on board now!

I opened the folder in the site’s Backup folder (moved servers) then navigated to the .php files I mentioned above to see if there was any hack code or if it was probably put on by previous webmaster.

I opened it in my normal plain text editor/html editor, etc, NoteTab Pro.

Before I went to delete the folder, I had two replicated folders with long numbers pre-pending the groupdocs-assembly name. Deleted permanently all folders (5 in all). I do not work in Windows as the Admin-Owner; nothing invoked “run as administrator” privileges.

Within 15 minutes I began getting “Another program has modified ______file name/location_____ do you want to reload, yes / no”
It went through every file open in NoteTab – then moved on to others including its core Program File folder files. Many files were not open in the Notetab program.

Within another 10 minutes, another laptop on the network with Public Folder sharing started in with the same thing. File modification, reload invoked by the Notetab Pro open there. Most files in question were not open in NoteTab Pro from which the messages were being seen.

None of the anti-virus software has reacted at all.

Neither of us has ever had a computer infection before–20 years. Oh joy.

Wordfence just found this on the site – one I just started working on for someone else. There have been no “hacks” that I can tell. I can see nothing “wrong” with the site. Spammers had gained “contributor” access to several logins, but that was it.

Is there a SAFE REMOVAL instruction page somewhere?
Do I just delete the Folder and be done with it?
Wordfence didn’t find anything else–it used the Google malware database.

The “plugin” does not show in the Plugins lineup from with the Admin area.

I had to ftp in to find out what I was looking at.

It has the 1, 2 and 3 .php files – Worfence identified 1.php as containing a malware site URL.

Filename: wp-content/plugins/groupdocs-assembly/js/1.php
Bad URL: https://there.was.an.ip.address.here/php.txt

The actual file has GIF above the code and this before bad code started.
/*******************************************\
| Source code obfuscated by Code Eclipse |
| https://www.REDACTEDNAME.com/ |
| Complete protection, total compatibility! |
\*******************************************/

??? Now what?

Thank you to those of you who know and see this to respond.

Thanks.

I see this error in the php error page. Finally checked this as it stopped working.

This started not very long ago (last or previous update). Current is 4.6.11

The aggregator no longer works as of this error.

It will not fetch anymore items.

I only have the Excerpts & Thumbnails add-on (now 1.9), but it worked after that was updated. No other “premium” status. It’s just be recently for the error and does not function any longer.

No Plugin changes have been made.
Regular WP, etc. updates applied with no seeming problems.
WP 4.1.1