WordPress.org

Ready to get started?Download WordPress

Forums

Backup Scheduler
[resolved] malware attack? (3 posts)

  1. omnidrew
    Member
    Posted 1 year ago #

    Wordfence is reporting links to xxx.com within 3 components of the plugin. I've deleted the files, redownloaded and I still get this error. Please advise.

    /d

    File contains suspected malware URL: /home/omniumc/public_html/design/wp-content/plugins/backup-scheduler/core/data/phpdoc_de7f7672f0d2e9f0039da841bff1cd60.html

    Filename: wp-content/plugins/backup-scheduler/core/data/phpdoc_de7f7672f0d2e9f0039da841bff1cd60.html
    Bad URL: http://xxx.com/
    File type: Not a core, theme or plugin file.
    Issue first detected: 4 mins ago.
    Severity: Critical
    Status New

    This file contains a suspected malware URL listed on Google's list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://xxx.com/ - More info available at Google Safe Browsing diagnostic page.
    Tools: View the file. Delete this file (can't be undone).
    Resolve: I have fixed this issue Ignore until the file changes. Always ignore this file.

    File contains suspected malware URL: /home/omniumc/public_html/design/wp-content/plugins/backup-scheduler/core/translation.class.php

    Filename: wp-content/plugins/backup-scheduler/core/translation.class.php
    Bad URL: http://xxx.com/
    File type: Not a core, theme or plugin file.
    Issue first detected: 4 mins ago.
    Severity: Critical
    Status New

    This file contains a suspected malware URL listed on Google's list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://xxx.com/ - More info available at Google Safe Browsing diagnostic page.
    Tools: View the file. Delete this file (can't be undone).
    Resolve: I have fixed this issue Ignore until the file changes. Always ignore this file.

    File contains suspected malware URL: /home/omniumc/public_html/design/wp-content/plugins/backup-scheduler/core/feedback.class.php

    Filename: wp-content/plugins/backup-scheduler/core/feedback.class.php
    Bad URL: http://xxx.com/
    File type: Not a core, theme or plugin file.
    Issue first detected: 4 mins ago.
    Severity: Critical
    Status New

    This file contains a suspected malware URL listed on Google's list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://xxx.com/ - More info available at Google Safe Browsing diagnostic page.

    http://wordpress.org/extend/plugins/backup-scheduler/

  2. Sed Lex
    Member
    Plugin Author

    Posted 1 year ago #

    It is not an attack ...
    I will remove this link if you want (used for a template : could be then http://www.domain.tld if you prefer)

  3. dlnsparks
    Member
    Posted 1 year ago #

    I also have an issue:
    File contains suspected malware URL: /home/content/77/9754377/html/.htaccess
    Filename: .htaccess
    Bad URL: http://193.33.186.241/

    I've tried to delete it, but I then get:
    "An error occurred
    An invalid file was requested for deletion."

    Anyone have any idea what I should do? Do I ignore this?

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags