Locked out by Defender while "Hardening" site

I did a recommended action of WP Defender - it was hiding vulnerabilities of WP with a htaccess.
Then I went to the others suggestions of Defender, to fix php error logs (delete them) but I wasn't able to delete them because Defender locked me out.

I've been able to disable Defender from the Hub, but would like to know why I was locked out in the first place so it does not happen again.