Trying to remove BM “progress.log” files

  • Resolved airbusch1

    (@airbusch1)


    11 months, 1 week ago

    I was notified by Siteground that my website was unsafe and was warned to get it fixed within 3 days or they’d suspend my website. this is the notice:

    “We would like to notify you that a malicious code was detected on newly uploaded/edited files that are part of your website lonniebusch.com. The permissions of the detected files have been changed and they are currently?not executable.”

    I restored my website from Siteground’s backups, then updated my website and plugins. When I did, I got a curious behavior from my Backups Migration plugin, an annoying popup window prompting me to click it so I could continue. Each time I dismissed it, then went to do something else, it popped up again. So I removed the Backup Migration plugin. But now, even though the plugin is gone, I am still getting notices from Wordfence that these malicious files are on my site. See below:

    Critical Problems:

    * File appears to be malicious or unsafe: wp-content/backup-migration/backups/latest_progress.log

    How can I remove them or stop them from being generated? I have used WordPress Advanced Database Cleaner several times but with no luck. I still get these prompts from Wordfence about malicious files with the .log extension. Do you have any suggestions?

    Sorry this is so long, but I felt I needed to explain the situation as best I could.

    Thank you,

    Lonnie

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Author iClyde

    (@iclyde)

    Hi @airbusch1

    Overall, I have no idea how any security plugin marked .log file as vulnerable it’s just text file, indeed this particular file it’s protected by our plugin from accessing by external users.

    I would recommend you to ignore or report this as false positive within your security plugin vendor, we also didn’t receive any details about this case from WordFence which makes me think more in the direction of something odd is going on here.

    I believe that Siteground plugin could mess things up with changing permissions and there is possibly code loop in the memory or endless error caused because of it, but can’t confirm due to lack of details, these are just my assumptions.

    If you have such option in your Hosting Dashboard, please reload PHP or switch temporary to older version then back to current one, it should restart PHP instance which will offload possible loop.

    Then go to FTP or File Manager plugin and just remove entire
    wp-content/backup-migration

    It should work without issues, if you can email contents of the progress.log file it would be helpful to understand it better why it was marked as malicious.

    [ support (at) backupbliss dot com ]

    Thank you!

Viewing 1 replies (of 1 total)
  • The topic ‘Trying to remove BM “progress.log” files’ is closed to new replies.