Alert: File Guard detection

  • Resolved shanghailander

    (@shanghailander)


    5 years, 10 months ago

    I received two emails from NinjaFirewall yesterday and I would be very grateful if someone could explain if this means hackers have got into my site and if so, what I should do!?

    Both emails had the following information and the IP numbers are not familiar to me.

    Thank you in anticipation ??

    Someone accessed a script that was modified or created less than 10 hour(s) ago:

    SERVER_NAME: mysite.com
    USER IP: 82.165.80.138
    SCRIPT_FILENAME: /home1/kahlua/public_html/mysite.com/wp-admin/index.php…

    ————-

    Someone accessed a script that was modified or created less than 10 hour(s) ago:

    SERVER_NAME: mysite.com
    USER IP: 124.148.119.203
    SCRIPT_FILENAME: /home1/kahlua/public_html/mysite.com/wp-admin/index.php…

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author nintechnet

    (@nintechnet)

    Those files were modified in the past 10 hours: maybe because you upgraded WordPress to version 5.2 lately?
    As indicated in the documentation

    Note that if you updated WordPress, you could receive a few notifications too, for instance, if a visitor accessed a core file that was just updated (e.g., index.php, wp-cron.php, admin-ajax.php etc).

    Thread Starter shanghailander

    (@shanghailander)

    Thanks so much for the answer, nintechnet! I can now assume I need not worry about emails which give those details in the future?

    Apologies for appearing rather dim about such things but I’m in my 70s and not tech-savvy :o)

    Plugin Author nintechnet

    (@nintechnet)

    Right after a WordPress update, you’ll likely receive a few alerts like those ones. That’s normal.
    But if you didn’t make any change to your site or any update and receive an alert, it could mean there’s a security issue with your site.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Alert: File Guard detection’ is closed to new replies.