Hi,
Please can you explain a bit more? I don’t understand what you mean by “with the following” ?
David
Hello David,
Maybe a better question is are these files legitimate in the plugin folder?
wp-content/plugins/updraftplus/vendor/guzzle/guzzle/src/Guzzle/Http/Message/PostFile.php
wp-content/plugins/updraftplus/vendor/guzzle/guzzle/src/Guzzle/Http/Message/RequestFactory.php
wp-content/plugins/updraftplus/vendor/guzzle/guzzle/src/Guzzle/Http/Message/RequestInterface.php
wp-content/plugins/updraftplus/vendor/guzzle/guzzle/src/Guzzle/Http/QueryAggregator/CommaAggregator.php
wp-content/plugins/updraftplus/vendor/guzzle/guzzle/src/Guzzle/Http/Message/RequestFactoryInterface.php
Thanks,
Terry
Hi Terry,
Yes, there are files with those names in UD.
That doesn’t indicate either way whether hackers have injected code into pre-existing files in your website, of course. (And if they have, it doesn’t indicate how they got in before doing so).
You can browse the official file list for a plugin by going to the “Developers” tab on the plugin page, BTW. Or by unzipping the zip from the plugin and having a look.
David
Is there a way to point out possible infections using the information on the backup logs? I have one backup from october las year and another from march this year. They seem to have very different sizes.
