FAQ Website Emails

BackupBuddy Error – Dropbox

The subject of the email to you is “BackupBuddy Error – your domain url”.

Although the email says that there is a error sending the BackupBuddy file to your remote destination (usually dropbox) what it usually means is that your dropbox account is full.

Note: If you click on the Contact Support button that takes you through to iTheme Support (the creators of BackupBuddy and not through to me).

If you are on a website care plan you will not receive these emails since they will come through to me and I’ll deal with them as part of your website care plan package.

backupbuddy dropbox error

Sign in to your dropbox account (if I set up your website for you then you will already have received your account details).

Delete some of the backup files from the BackBuddy folder in dropbox.

You can either login in to the back office of your website and resend the backup file to dropbox or wait until the backup is run again it should send the file correctly.

backupbuddy error send backup again

WordPress File Change Warning

These emails will have the subject ‘WordPress File Change Warning’ with a date and time. This email is sent from your website by the plugin iTheme Security and can be found in the back office of your website under the heading Security.

The email will contain information such as when the file scan took place, how many files were added, deleted, or modified and how much memory was used.

If you have updated your website recently then it’s likely that lots of files may have been added, deleted or modified. If you have NOT updated your website recently and the files are in directories for pb_backbuddy such as

wp-content/uploads/pb_backupbuddy/fileoptions/xxxxxxx.txt

then it’s probably okay because Backupbuddy (your backup plugin) performs automatic updates. If you do not have Backupbuddy as your backup plugin then this could still be an issue.

If there are files there that do not recognise and you have not done any updates yourself then please contact a website professional who can help you.

Please note that if you are on a website care plan you will not receive these emails since they will come through to me and I’ll deal with them as part of your website care plan package.

BackupBuddy Error – Google Drive

The subject of the email to you is “BackupBuddy Error – your domain url”.

Although the email says that there is a error sending the BackupBuddy file to your remote destination such as googledrive, what it usually means is that your account is full.

Note: If you click on the Contact Support button that takes you through to iTheme Support (the creators of BackupBuddy and not through to me).

If you are on a website care plan you will not receive these emails since they will come through to me and I’ll deal with them as part of your website care plan package.

Sign in to your google drive account (if I set up your website for you then you will already have received your account details).

Delete some of the backup files from the BackBuddy folder.

You can either login in to the back office of your website and resend the backup file to google drive or wait until the backup is run again it should send the file correctly.

backupbuddy error send backup again

[Wordfence Alert] Problems found on (medium severity problems)

The subject of the email is [Wordfence Alert] Problems found on [your website domain]. The image below shows how the email will look – however the names of your domain and the plugin domain will not be pixelated.

If it's a mediume severity error that can include letting you know that a plugin on your website needs updating. This is important because outdated plugins can be a security risk.

To do this you can log into the back end of your website, do a backup (always do a backup before doing updates) and then after the backup has completed successfully you can update the plugin.

Check that your website is looking and performing the same as before the update.

Wordfence problems email

Wordfence Alert] www.your-domain-name.com.au Wordfence Deactivated

This email from Wordfence is alerting you that Wordfence itself has been deactivated on your website. If you did this yourself for some reason, then you would know that. However, if it’s someone else that shouldn’t be deactivating the Wordfence plugin then it’s something you need to investigate.

The image below shows you the layout of the email.

It tells you the username of the person that deactivated the plugin, their IP address, their hostname and the user hostname location. The user hostname location can be the same as the user location but not always. For example my user hostname is in Adelaide and I’m not but the user location still says Adelaide for me.

If the username is not yours, then contact that user urgently to see whether they did do this or whether someone has hacked into your website.

wordfence deactivated message

 

 

Too many failed login attempts

The subject of the email is “[www.yourdomain.com.au] Too many failed login attempts”.

The email contains information like this:

————————————————

8 failed login attempts (2 lockout(s)) from IP: xxx.xxx.xx.xx

Last user attempted: admin

IP was blocked for 24 hours

———————————

This email means that someone was attempting to enter the back office of your website by using the username that’s in the email – in the above example the user name is admin.

The IP address (which would have actual numbers rather than xxx) is where they are located when trying to login to your website.

The message that the IP was blocked for 24 hours means that they cannot try again for 24 hours.

Programs used by hackers will keep trying to login for many hours so this prevents that repeat access for a set amount of time, which can be varied as required.

My clients do NOT have admin as any of their usernames since it’s the default that was used in the past.

If you are on a website care plan you will not receive these emails since they will come through to me and I’ll deal with them as part of your website care plan package.

Wordfence – modified plugin WP fastest cache

WP Fastest Cache has been known to update their plugin without giving a new release. Since WordFence can be set to compare the version on your website with the version in the WordPress repository this can give an error (see WP Fastest Cache website – https://www.wpfastestcache.com/warnings/wordfence-alert/).

FAQ-WPfastestcache

If your website says that this plugin has an update to perform you can perform that update or you can click on repair files to update your plugin from the repository.

FAQ wp fastest cache Wordfence repair

If you are on a website care plan you will not receive these emails since they will come through to me and I’ll deal with them as part of your website care plan package.

Wordfence – critical problem - plugin removed

This email is more of a problem than some of the other error emails and means that you need to take some action since it could be a security issue.

Any wordfence email that has the words critical problem needs to be investigated.

In this case a plugin has been removed from the WordPress repository (https://wordpress.org/plugins/).  I've pixelated the plugin name in the image below but the email will state the actual plugin. 

wordfence critical problem plugin removed

Firstly I visit the support section of the plugin page in the WordPress repository. The front page of the plugin will state that the plugin has been removed but WordPress does not state why. I wish it would even if they just had a series of categories such as Admin failure, Security investigation or something like that. Unfortunately they don't which is why I go to the support section of the plugin. If you are lucky someone else has already been there to ask why the plugin has been removed - if post I create a post asking that question. 

why has plugin been removed

The front page of the plugin still has the author of the plugin and you can click on there to be taken through to their website. Once there I tend to use the contact form to contact the developer.

In some cases (as in this case) it can simply be an admin issue and the plugin was re-instated within 10 minutes and all was well in the world (well in the world of that clients website). 

In other cases do a search in your favourite search engine for that plugin. If it's a security issue then others tend to be discussing it online. Hopefully there are steps to rectify the issue, such as a quick update to a newly released version of the plugin and an extra scan with wordfence.    

If you are on a website care plan you will not receive these emails since they will come through to me and I’ll deal with them as part of your website care plan package. Some security issues may incur charges outside of the website care plan and these will be discussed before any action is taken. 

Scroll to Top