WordPress.org

Support

Support » Plugins and Hacks » [Resolved] [Plugin: Backup Scheduler] malware attack?

[Resolved] [Plugin: Backup Scheduler] malware attack?

  • Wordfence is reporting links to xxx.com within 3 components of the plugin. I’ve deleted the files, redownloaded and I still get this error. Please advise.

    /d

    File contains suspected malware URL: /home/omniumc/public_html/design/wp-content/plugins/backup-scheduler/core/data/phpdoc_de7f7672f0d2e9f0039da841bff1cd60.html

    Filename: wp-content/plugins/backup-scheduler/core/data/phpdoc_de7f7672f0d2e9f0039da841bff1cd60.html
    Bad URL: http://xxx.com/
    File type: Not a core, theme or plugin file.
    Issue first detected: 4 mins ago.
    Severity: Critical
    Status New

    This file contains a suspected malware URL listed on Google’s list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://xxx.com/ – More info available at Google Safe Browsing diagnostic page.
    Tools: View the file. Delete this file (can’t be undone).
    Resolve: I have fixed this issue Ignore until the file changes. Always ignore this file.

    File contains suspected malware URL: /home/omniumc/public_html/design/wp-content/plugins/backup-scheduler/core/translation.class.php

    Filename: wp-content/plugins/backup-scheduler/core/translation.class.php
    Bad URL: http://xxx.com/
    File type: Not a core, theme or plugin file.
    Issue first detected: 4 mins ago.
    Severity: Critical
    Status New

    This file contains a suspected malware URL listed on Google’s list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://xxx.com/ – More info available at Google Safe Browsing diagnostic page.
    Tools: View the file. Delete this file (can’t be undone).
    Resolve: I have fixed this issue Ignore until the file changes. Always ignore this file.

    File contains suspected malware URL: /home/omniumc/public_html/design/wp-content/plugins/backup-scheduler/core/feedback.class.php

    Filename: wp-content/plugins/backup-scheduler/core/feedback.class.php
    Bad URL: http://xxx.com/
    File type: Not a core, theme or plugin file.
    Issue first detected: 4 mins ago.
    Severity: Critical
    Status New

    This file contains a suspected malware URL listed on Google’s list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://xxx.com/ – More info available at Google Safe Browsing diagnostic page.

    http://wordpress.org/extend/plugins/backup-scheduler/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Sed Lex
    Member

    @sedlex

    It is not an attack …
    I will remove this link if you want (used for a template : could be then http://www.domain.tld if you prefer)

    dlnsparks
    Participant

    @dlnsparks

    I also have an issue:
    File contains suspected malware URL: /home/content/77/9754377/html/.htaccess
    Filename: .htaccess
    Bad URL: http://193.33.186.241/

    I’ve tried to delete it, but I then get:
    “An error occurred
    An invalid file was requested for deletion.”

    Anyone have any idea what I should do? Do I ignore this?

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘[Resolved] [Plugin: Backup Scheduler] malware attack?’ is closed to new replies.