Multiple wordfence files edited possible by hackers

  • Hi,

    I am enabling site lock in my cpanel except for the /wp-content/ file. Recently I found this error in the backend:

    Error: Unable to open /home/aiething/public_html/wp-content/wflogs/ips.php for reading and writing.

    I then found that the website does not load, also when I checked Wordfence I found multiple files edited, example:

    Modified plugin file: wp-content/plugins/wordfence/lib/GeoLite2-Country.mmdb

    Type: File

    I am afraid this could be a hacker, kindly assist

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @aitta10, thanks for reaching out.

    You can check the permissions for file reading/writing on the?Wordfence > Tools > Diagnostics?page. The first error may suggest there’s a problem with permissions on your server, but could have just been a temporary issue if everything there seems fine.

    The GeoIP database to report the location of IP addresses targeting your site, and most files in the wflogs folder do get regularly updated so that doesn’t seem unusual activity.

    Many thanks,
    Peter.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.