Support » Plugin: Wordfence Security » WORDFENCE. "WordPress core file modified: wp – config- sample.php "

  • Hello,
    I recently installed wordpress on my computer and , following what I have seen in different forums, I installed the antivirus Wordfence (Free version).
    The problem is that , after upgrading the version that had wordpress , and at a time which was not connected me I received a notification email Wordfence he says. “WordPress core file modified: wp – config- sample.php “
    I do not know if that means I have been hacked or is a notification that has come to update the version .

    Could anyone help me?
    Tell me if I’ve been hacked or not?
    And it should have been. What should I do?

    Thank you very much

    https://wordpress.org/plugins/wordfence/

Viewing 9 replies - 1 through 9 (of 9 total)
  • Hi, I get the same alert almost every time I do a major WordPress update.
    My advice is to delete that file, you don’t need it if you already installed WP.

    Plugin Support wfasa

    (@wfasa)

    Hello miguelasecas,
    Most likely it’s just a language issue. (You are using a different language version than the default in WordPress repository). As webby1973 says, you can delete that file. You can also click to view the changes that have been made if you want to confirm that they are benign.

    rjmt2015

    (@rjmt2015)

    Hello,

    I got the following notification from Wordfence after which my site crashed.

    My hosting provider checked the server and there were no changes made by their software that they could find.

    Does someone here have any idea what caused the changes listed below in the core files that made the site crash?

    QUOTE:

    This email was sent from your website “Be Brilliant” by the Wordfence plugin.

    Wordfence found the following new issues on “Be Brilliant”.

    Alert generated at Wednesday 11th of January 2017 at 10:22:42 PM

    Critical Problems:

    * WordPress core file modified: wp-includes/js/wp-api.js

    * WordPress core file modified: wp-includes/js/wp-api.min.js

    * WordPress core file modified: wp-includes/js/wplink.js

    * WordPress core file modified: wp-includes/js/wplink.min.js

    * WordPress core file modified: wp-includes/load.php

    * WordPress core file modified: wp-includes/media.php

    * WordPress core file modified: wp-includes/ms-functions.php

    * WordPress core file modified: wp-includes/post-template.php

    * WordPress core file modified: wp-includes/post.php

    * WordPress core file modified: wp-includes/rest-api/class-wp-rest-request.php

    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-attachments-controller.php

    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-comments-controller.php

    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php

    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-terms-controller.php

    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php

    * WordPress core file modified: wp-includes/script-loader.php

    * WordPress core file modified: wp-includes/taxonomy.php

    * WordPress core file modified: wp-includes/theme.php

    * WordPress core file modified: wp-mail.php

    UNQUOTE

    rjmt2015: I’m seeing the same thing on one of my sites. So far nothing has crashed (crossing fingers) but I too would like to know what this is about. It seems to have come very soon after both a WordPress update to 4.7.2, as well as a Wordfence update to 6.3.0. I’m wondering if maybe Wordfence is reporting the WordPress updated files, but I would like to hear from the Wordfence folks to find out for sure.

    themusicbusinessnetwork

    (@themusicbusinessnetwork)

    I received a weird email as well (similar to RJT2015’s) this morning.

      Here’s what mine said:

    Wordfence found the following new issues on “The Music Business Network”.

    Critical Problems:

    * WordPress core file modified: wp-admin/includes/class-wp-posts-list-table.php
    * WordPress core file modified: wp-admin/includes/class-wp-press-this.php
    * WordPress core file modified: wp-includes/class-wp-query.php
    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-comments-controller.php
    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-post-statuses-controller.php
    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-post-types-controller.php
    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php
    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-revisions-controller.php
    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-taxonomies-controller.php
    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-terms-controller.php
    * WordPress core file modified: wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php
    * WordPress core file modified: wp-includes/rest-api.php

    If anyone could shed some light on this issue (or if it even is an issue) it would be greatly appreciated. All of my plugins are up to date and the only thing I did on my site recently was this morning (which was create a forum post).

    I look forward to resolving this issue and speaking with you soon!

    ~ Kathryn

    I’m having the same issue…

    RCreate

    (@robinsoncreativeinc)

    Started a post this morning about the same thing. Do wonder if it has to do with GoDaddy though.
    https://wordpress.org/support/topic/wordpress-core-file-modified-wp-adminincludesclass-wp-posts-list-table-php/

    RCreate: I’m not on GoDaddy, so that’s unlikely.

    following

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘WORDFENCE. "WordPress core file modified: wp – config- sample.php "’ is closed to new replies.