Hello All,
This is my first post here and I have come looking for your help. A few days ago my wordfence for my website fullmoor.com sent me a warning saying someone had logged in as admin using: systemwpadmin. After some research I realized that there may have been some cross site contamination from some of my other websites that I had left dormant and not updated to current wp. Since my fullmoor site was fairly new and didn't have a lot of content on it yet I decided to just delete everything off my host and have my them install a fresh wp onto fullmoor and leave the other sites blank (actually, come to think of this is it bad to do that?). After that I set up wordfence and blocked all the IP's that I had been doing so previously (including the systemwpadmin IP). Then the very night I installed wp again I got this warning: WordPress core file modified: wp-config-sample.php
Wordfence shows this as the original:
/** Sets up WordPress vars and included files. */
require_once(ABSPATH . 'wp-settings.php'); And this as the changed version:
/** Sets up WordPress vars and included files. */
require_once(ABSPATH . 'wp-settings.php');
/**
* Include tweaks requested by hosting providers. You can safely
* remove either the file or comment out the lines below to get
* to a vanilla state.
*/
if (file_exists(ABSPATH . 'hosting_provider_filters.php')) {
include('hosting_provider_filters.php');
} I'm not really familiar with code and such and I don't know if this is some benign thing that my host has added to me wp (though I don't know why they would and I am waiting to hear back from them). Looking around online it would seem some people have had things like this happen when they are using different languages in wp, but I am in English.
Any help would be awesome. Thank you.
Simom