Sucuri Alert, www.edensyntheticcorps.pt, Core Integrity Checks,


Sucuri, Inc.

Sucuri Alert

Information:

Website: www.edensyntheticcorps.pt
IP Address: 80.172.241.20
Reverse IP: caldeirao.esoterica.pt
Date/Time: 16 June, 2019 23:27

Message:

We identified that some of your WordPress core files were modified. That might indicate a hack or a broken file on your installation. If you are experiencing other malware issues, please use a Server Side Scanner.

WordPress Integrity (1)
  Status File Size Modified At File Path

added

442B 10 November, 2018 16:58 wordfence-waf.php

Marking one or more files as fixed will force the plugin to ignore them during the next scan, very useful when you find false positives. Additionally you can restore the original content of the core files that appear as modified or deleted, this will tell the plugin to download a copy of the original files from the official WordPress repository. Deleting a file is an irreversible action, be careful.

Sucuri Alert, www.edensyntheticcorps.pt, Core Integrity Checks,


Sucuri, Inc.

Sucuri Alert

Information:

Website: www.edensyntheticcorps.pt
IP Address: 80.172.241.20
Reverse IP: caldeirao.esoterica.pt
Date/Time: 16 June, 2019 11:12

Message:

We identified that some of your WordPress core files were modified. That might indicate a hack or a broken file on your installation. If you are experiencing other malware issues, please use a Server Side Scanner.

WordPress Integrity (1)
  Status File Size Modified At File Path

added

442B 10 November, 2018 16:58 wordfence-waf.php

Marking one or more files as fixed will force the plugin to ignore them during the next scan, very useful when you find false positives. Additionally you can restore the original content of the core files that appear as modified or deleted, this will tell the plugin to download a copy of the original files from the official WordPress repository. Deleting a file is an irreversible action, be careful.

Sucuri Alert, www.edensyntheticcorps.pt, Core Integrity Checks,


Sucuri, Inc.

Sucuri Alert

Information:

Website: www.edensyntheticcorps.pt
IP Address: 80.172.241.20
Reverse IP: caldeirao.esoterica.pt
Date/Time: 15 June, 2019 23:13

Message:

We identified that some of your WordPress core files were modified. That might indicate a hack or a broken file on your installation. If you are experiencing other malware issues, please use a Server Side Scanner.

WordPress Integrity (1)
  Status File Size Modified At File Path

added

442B 10 November, 2018 16:58 wordfence-waf.php

Marking one or more files as fixed will force the plugin to ignore them during the next scan, very useful when you find false positives. Additionally you can restore the original content of the core files that appear as modified or deleted, this will tell the plugin to download a copy of the original files from the official WordPress repository. Deleting a file is an irreversible action, be careful.

[Wordfence Alert] Problems found on www.edensyntheticcorps.pt

This email was sent from your website “Eden Synthetic Corps” by the Wordfence plugin.

Wordfence found the following new issues on “Eden Synthetic Corps”.

Alert generated at Saturday 15th of June 2019 at 07:07:32 PM

See the details of these scan results on your site at: http://www.edensyntheticcorps.pt/wp-admin/admin.php?page=WordfenceScan

Medium Severity Problems:

* The Plugin "Really Simple SSL" needs an upgrade (3.1.5 -> 3.2.2).

Really Simple SSL

NOTE: You are using the free version of Wordfence. Upgrade today:

  • Receive real-time Firewall and Scan engine rule updates for protection as threats emerge
  • Real-time IP Blacklist blocks the most malicious IPs from accessing your site
  • Country blocking
  • IP reputation monitoring
  • Schedule scans to run more frequently and at optimal times
  • Access to Premium Support
  • Discounts for multi-year and multi-license purchases

Click here to upgrade to Wordfence Premium:
https://www.wordfence.com/zz2/wordfence-signup/

No longer an administrator for this site? Click here to stop receiving security alerts.

Sucuri Alert, www.edensyntheticcorps.pt, Core Integrity Checks,


Sucuri, Inc.

Sucuri Alert

Information:

Website: www.edensyntheticcorps.pt
IP Address: 80.172.241.20
Reverse IP: caldeirao.esoterica.pt
Date/Time: 15 June, 2019 11:22

Message:

We identified that some of your WordPress core files were modified. That might indicate a hack or a broken file on your installation. If you are experiencing other malware issues, please use a Server Side Scanner.

WordPress Integrity (1)
  Status File Size Modified At File Path

added

442B 10 November, 2018 16:58 wordfence-waf.php

Marking one or more files as fixed will force the plugin to ignore them during the next scan, very useful when you find false positives. Additionally you can restore the original content of the core files that appear as modified or deleted, this will tell the plugin to download a copy of the original files from the official WordPress repository. Deleting a file is an irreversible action, be careful.

Sucuri Alert, www.edensyntheticcorps.pt, Core Integrity Checks,


Sucuri, Inc.

Sucuri Alert

Information:

Website: www.edensyntheticcorps.pt
IP Address: 80.172.241.20
Reverse IP: caldeirao.esoterica.pt
Date/Time: 14 June, 2019 23:19

Message:

We identified that some of your WordPress core files were modified. That might indicate a hack or a broken file on your installation. If you are experiencing other malware issues, please use a Server Side Scanner.

WordPress Integrity (1)
  Status File Size Modified At File Path

added

442B 10 November, 2018 16:58 wordfence-waf.php

Marking one or more files as fixed will force the plugin to ignore them during the next scan, very useful when you find false positives. Additionally you can restore the original content of the core files that appear as modified or deleted, this will tell the plugin to download a copy of the original files from the official WordPress repository. Deleting a file is an irreversible action, be careful.

Sucuri Alert, www.edensyntheticcorps.pt, Core Integrity Checks,


Sucuri, Inc.

Sucuri Alert

Information:

Website: www.edensyntheticcorps.pt
IP Address: 80.172.241.20
Reverse IP: caldeirao.esoterica.pt
Date/Time: 14 June, 2019 11:13

Message:

We identified that some of your WordPress core files were modified. That might indicate a hack or a broken file on your installation. If you are experiencing other malware issues, please use a Server Side Scanner.

WordPress Integrity (1)
  Status File Size Modified At File Path

added

442B 10 November, 2018 16:58 wordfence-waf.php

Marking one or more files as fixed will force the plugin to ignore them during the next scan, very useful when you find false positives. Additionally you can restore the original content of the core files that appear as modified or deleted, this will tell the plugin to download a copy of the original files from the official WordPress repository. Deleting a file is an irreversible action, be careful.

[Wordfence Alert] www.edensyntheticcorps.pt Increased Attack Rate

This email was sent from your website “Eden Synthetic Corps” by the Wordfence plugin at Friday 14th of June 2019 at 04:11:38 AM
The Wordfence administrative URL for this site is: http://www.edensyntheticcorps.pt/wp-admin/admin.php?page=Wordfence
The Wordfence Web Application Firewall has blocked 122 attacks over the last 10 minutes. Below is a sample of these recent attacks:

June 14, 2019 4:05am 51.15.51.186 (Unknown) Blocked for XSS: Cross Site Scripting in POST body: css=eval(String.fromCharCode(118, 97, 114, 32, 112, 112, 112, 61, 10

[Wordfence Alert] www.edensyntheticcorps.pt Increased Attack Rate

This email was sent from your website “Eden Synthetic Corps” by the Wordfence plugin at Friday 14th of June 2019 at 04:02:26 AM
The Wordfence administrative URL for this site is: http://www.edensyntheticcorps.pt/wp-admin/admin.php?page=Wordfence
The Wordfence Web Application Firewall has blocked 174 attacks over the last 10 minutes. Below is a sample of these recent attacks:

June 14, 2019 4:02am 51.15.51.186 (Unknown) Blocked for Total Donations (all known versions) – Multiple Unauthenticated AJAX Actions
June 14, 2019 4:02am 51.15.51.186 (Unknown) Blocked for Newspaper Premium Theme <= 6.7.1 – Privilege Escalation
June 14, 2019 4:02am 51.15.51.186 (Unknown) Blocked for Yellow Pencil Visual Theme Customizer <= 7.1.9 Arbitrary Options Update in query string: yp_remote_get=test
June 14, 2019 4:02am 51.15.51.186 (Unknown) Blocked for Yellow Pencil Visual Theme Customizer <= 7.1.9 Arbitrary Options Update in query string: yp_remote_get=test
June 14, 2019 4:02am 51.15.51.186 (Unknown) Blocked for Freemius SDK < 2.2.2 – Authenticated Arbitrary Options Update
June 14, 2019 4:01am 51.15.51.186 (Unknown) Blocked for Freemius SDK < 2.2.2 – Authenticated Arbitrary Options Update
June 14, 2019 4:01am 51.15.51.186 (Unknown) Blocked for WP GDPR Compliance <= 1.4.2 – Update Any Option / Call Any Action in POST body: action=wpgdprc_process_action
June 14, 2019 4:01am 51.15.51.186 (Unknown) Blocked for WP GDPR Compliance <= 1.4.2 – Update Any Option / Call Any Action in POST body: action=wpgdprc_process_action
June 14, 2019 4:01am 51.15.51.186 (Unknown) Blocked for Total Donations (all known versions) – Multiple Unauthenticated AJAX Actions
June 14, 2019 4:01am 51.15.51.186 (Unknown) Blocked for Newspaper Premium Theme <= 6.7.1 – Privilege Escalation

NOTE: You are using the free version of Wordfence. Upgrade today:
– Receive real-time Firewall and Scan engine rule updates for protection as threats emerge
– Real-time IP Blacklist blocks the most malicious IPs from accessing your site
– Country blocking
– IP reputation monitoring
– Schedule scans to run more frequently and at optimal times
– Access to Premium Support
– Discounts for multi-year and multi-license purchases

Click here to upgrade to Wordfence Premium:
https://www.wordfence.com/zz1/wordfence-signup/

To change your alert options for Wordfence, visit:
http://www.edensyntheticcorps.pt/wp-admin/admin.php?page=Wordfence&subpage=global_options
To see current Wordfence alerts, visit:
http://www.edensyntheticcorps.pt/wp-admin/admin.php?page=Wordfence

No longer an administrator for this site? Click here to stop receiving security alerts: http://www.edensyntheticcorps.pt/?_wfsf=removeAlertEmail&jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJlbWFpbCI6ImJhbmRAZWRlbnN5bnRoZXRpY2NvcnBzLnB0IiwiX2V4cCI6MTU2MTA4OTc0Nn0.gusx3IsjsuYkKLHg0lztRsE62ZEFfBiGSVQvdCev1bU

Sucuri Alert, www.edensyntheticcorps.pt, Core Integrity Checks,


Sucuri, Inc.

Sucuri Alert

Information:

Website: www.edensyntheticcorps.pt
IP Address: 80.172.241.20
Reverse IP: caldeirao.esoterica.pt
Date/Time: 13 June, 2019 23:11

Message:

We identified that some of your WordPress core files were modified. That might indicate a hack or a broken file on your installation. If you are experiencing other malware issues, please use a Server Side Scanner.

WordPress Integrity (1)
  Status File Size Modified At File Path

added

442B 10 November, 2018 16:58 wordfence-waf.php

Marking one or more files as fixed will force the plugin to ignore them during the next scan, very useful when you find false positives. Additionally you can restore the original content of the core files that appear as modified or deleted, this will tell the plugin to download a copy of the original files from the official WordPress repository. Deleting a file is an irreversible action, be careful.