Wordfence deactivated remotely

  • Resolved JenFlan

    (@jenflan)


    1 year, 9 months ago

    Hi, I am very concerned as I have had Wordfence installed and running on this web site for a long time. Today I got the message from Wordfence that the site had an error. I got onto the web site and was sorting it out and found that Wordfence had been uninstalled. I tried to reinstall it and got the message Installation failed: {“success”:true,”data”:{“install”:”plugin”,”slug”:”wordfence”,”pluginName”:”Wordfence Security – Firewall, Malware Scan, and Login Security”,”activateUrl”:”https:\/\/raylacgasandweldingsupplies.co.za\/wp-admin\/plugins.php?_wpnonce=a37933c2f5&action=activate&plugin=wordfence\/wordfence.php”}}

    After trying a couple of fixes I got the plugin back onto the site. It scans and I get an email with the following, but the scan itself just goes round and round and never finishes and doesnt give me the option to remove or fix the problem.

    This email was sent from your website “Raylac” by the Wordfence plugin.

    Wordfence found the following new issues on “Raylac”.

    Alert generated at Tuesday 16th of May 2023 at 08:08:13 AM

    See the details of these scan results on your site at: https://raylacgasandweldingsupplies.co.za/wp-admin/admin.php?page=WordfenceScan

    High Severity Problems:

    * WordPress core file modified: index.php

    * WordPress core file modified: wp-includes/class-wp.php

    * WordPress core file modified: wp-includes/default-constants.php

    * WordPress core file modified: wp-includes/functions.php

    * WordPress core file modified: wp-includes/load.php

    Can you assist please. Thanks, Jenny

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Support wfjanet

    (@wfjanet)

    Hi?@jenflan,

    Thank you for reaching out.

    Did you recently update WordPress core by chance? This could explain it.

    If not, please navigate to Wordfence > Scan page, find these results, click on them to expand the details, then screenshot them for me to review.

    You can post them here if you remove the sensitive data but I’d rather you send them to [email protected] with your Forum username as the subject.

    As a rule, any time I think someone’s site has been compromised, I also tell them to update their passwords for their hosting control panel, FTP, WordPress admin users, and database. Make sure to do this because attack vectors around your hosting or database environments are outside of Wordfence’s influence as an endpoint firewall.

    Let me know once you send the screenshots.

    Thanks,

    Janet

Viewing 1 replies (of 1 total)
  • The topic ‘Wordfence deactivated remotely’ is closed to new replies.