Replies: 0
My website was hacked last week with Malware added. The most likely culprit was plugin: wp-live-chat. However, I received no alert through WordFence (free version), and the scan kept coming up clean. Google (adwords) alerted me to Malware, and Securi confirmed it. The site has now been cleaned (by Securi). I really like WordFence, but I’m worried the malware wasn’t detected.
Replies: 0
Hi. My site is not opening due to a Wordfence block:
“Your access to this site was blocked by Wordfence, a security provider, who protects sites from malicious activity.”
What should I do?
Replies: 0
On my dashboard it says, “The last rules update for the Wordfence Web Application Firewall was unsuccessful. The last successful update check was April 11, 2019 11:47 pm, so this site may be missing new rules added since then. You may wait for the next automatic attempt at June 4, 2019 8:27 pm or try to Manually Update by clicking the “Manually Refresh Rules” button below the Rules list.”
However, when I try to manually refresh, a pop-up appears with the following error message: “No rules were updated. Please verify your website can reach the Wordfence servers.”
I’m using Wordfence 7.3.2 and WordPress 5.2.1.
Last week I tried deleting the rules.php as suggested in this post (https://wordpress.org/support/topic/rules-update-failing/), but the rules have not yet re-populated.
Replies: 0
Hi. After activating feature Disable Code Execution for Uploads directory, I am getting error 500 for all files in the Upload folder when I check Console on Chrome (my site does not load and display images and .css files).
This is the code I have in .htaccess when this feature is enabled.
# BEGIN Wordfence code execution protection
<IfModule mod_php5.c>
php_flag engine 0
</IfModule>
<IfModule mod_php7.c>
php_flag engine 0
</IfModule>
AddHandler cgi-script .php .phtml .php3 .pl .py .jsp .asp .htm .shtml .sh .cgi
Options -ExecCGI
# END Wordfence code execution protectionI checked and my host bans there commands:
php_flag
php_value
ServerSignature
SetHandler
XBitHack
AddHandler
and also limits Options command (only Indexes is allowed). Is there any way how to solve it and still use the WordFence feature, or disable the code execution some other way? Would, for example, this code do the same job?
<FilesMatch *.(php|phtml|php3|pl|py|jsp|asp|htm|shtml|sh|cgi)>
Deny from all
</FilesMatch>Thank you for any advice and help.
Replies: 0
Hi
I recently started getting scan errors with not completing. I changed the scan settings to low resources and increased the time limit. Scan then runs ok.
But it then resets the options the next time a scan runs. It does not retain them.
Is this some crippled part of the free version? i.e. you have to pay in order to save your settings?
Replies: 0
Does anyone know if Wordfence stores the results of the scan anywhere? The full log options shows what scans were run when but not the results of the scans.
I’m trying to trace a DNS problem that Wordfence picked up on a few days ago but I can’t find exactly when it first appeared.
Replies: 0
Since yesterday everything was working fine but today site is not loading properly. I tried to login my admin panel to check the problem but after entering the username and password, wordfence must prompt a 2FA code text box where I can enter my 2FA code but I am getting “CODE REQUIRED: Please provide your 2FA code when prompted.” message but wordpress not showing me the 2FA code text box.
I can remove the plugin via FTP but technically I am locked out.
I would appreciate if you could please help me to solve the problem without removing the plugin.
Replies: 0
Hi
I purchased your premium service last week (Ticket [#101179]) for one site. We upgraded and paid for cleaning and protection across all 4 sites on the same server.
Yesterday the team working on it asked a question about the database for the infected site. Since then nothing from your team.
But 3 out of the 4 other sites went down with massive infections (got the wordfence alerts). I assume from the database.
Appreciate you may be working on it, but having paid a lot of money to have all our sites cleaned and protected then have 3 out 4 taken out of action while you’re working on them is alarming.
More alarming is that I have been submitting tickets since around 6am this morning European time as I need to know if our hosting co should do something to recover the sites – no one from your team has got back to me in 7 hours so far.
Please as a matter of urgency can you contact me to explain:
1) why 3 out of our 4 sites are now down
2) when you can get them back online
3) how this happened.
James
Replies: 0
Hi,
I receive Admin Login alert emails when an Admin logs in. That’s fine and works well. However, is there any way to disable these for logins from certain trusted IPs, so these Alert notification emails are not sent?
Thanks.
Sal.
Replies: 0
Hi.
How can I remove completely the new 2fa authentication? I tried from the settings and I couldn’t find the option.
Thanks in advance.
Replies: 0
We recently moved our site from one host to another, ever since then Wordfence has been unable to start any scans. Additionally, under Tools > Diagnostics the connectivity section shows an error on ‘connecting back to this site’, I have included the error message below.
wp_remote_post() test back to this server failed! Response was: cURL error 60: Peer's Certificate has expired.
I believe the above error is occuring because the IPs listed by Wordfence for the server are incorrect, this could also be why the scanning is failing. Currently it lists two IP addresses, the first is the old external IP address from before the move, the second is the current internal IP address. The SSL certificate currently in use by the server is valid and works fine in both Chrome and Firefox, the old server however did not have a SSL certificate installed by us.
I have tried reinstalling Wordfence completely, even tried manually deleting any leftover files or database entries but it still shows the old external IP address.
Replies: 0
Hi,
I think the user last login feature was introduced in a recent version of Wordfence and now I am trying to locate the function() that stores the last login dates in wp_usermeta table, but I couldn’t so far, because there are so many files in the plugin and I didn’t find any suggestive title.
Can you please indicate me the .php file where I can find the function that handles the update of the user meta regarding user last login date, please?
Thanks,
Mikey
Replies: 0
Just a FYI, if you use this login security and the new recaptch, it totally breaks the site ability to login. I had to delete and restore the wordfence software to the previous version in order to regain control of the sites. Admin and any other logins, would say invalid password..when it was a good password. Avoid the update or at the very least, do not use the recaptch and skip the new login security..not ready for prime time.
Replies: 0
I tried to block the ip 0.0.0.0 with is a bot and is trying to attack on my website and has tried more than 4000 times, please help me on how to solve it and block the ip.
IP: 0.0.0.0 Hostname: 0.0.0.0
Human/Bot: Bot
Browser: undefined
WordPress/5.2.1; https://ayyanexpress.com
Replies: 0
I uninstalled WordFence and think it may have left some things behind in my database.
Are these part of WordFence?
wp_wfls_2fa_secrets
wp_wfls_settings
wf_plugin_act_error
wfbench_hostName
wfbench_rating
wfbench_review
Thanks for your help!
Replies: 1
Yesterday afternoon, after working on elementor for long hours, wordfence popped up with a message, and that I should whitelist or dismiss ( To be honest, I didn’t really understand the fully meaning of the pop up, I remember I saw something admin ) and just to be safe and security safer, I clicked dismiss because I saw admin.
After that, Elementor have stopped working. When I try to open a page, it will fully load elementor tab in the right but my page will not come up, only a white page.
I checked all through wordfence for that event I dismiss, so I can whitelist or cancel it, I could find it. Because we a lot of pages on a daily basis, I painfully restored wordfence to default, clicked on delete all tables and data after deletion. I uninstalled wordfence and deleted it, yet, my pages aren’t loading on elementor.
This is so painful because I’ve been trying all I can for 24 hours now, time wasted, that time should have been used for something resourceful.
What do I do to revert that action? I need to get elementor to load my pages. I have another website, elementor works well there. So it is obvious it’s the action I dismissed via wordfence.
Any help with be appreciated. I need to install wordfence back but I need elementor to work.
Replies: 0
I have locked myself out of my website. I have entered the correct email to receive unlock email instructions but I don’t receive the email. I’ve enabled debugging mode but still don’t receive the email. Why?
I’ve checked in the junk folder, it’s not there.
I can login with cPanel.
Replies: 0
Hi, On the “Live Traffic” screen under the Red circle with an X it says:
Type: Blocked. To the right it gives the details of the attack. Underneath there are 4 options to select. Even though it says Blocked should I also be selecting “Block IP”? Thanks.
Replies: 0
I have been getting this error in my Query Monitor Plugin dashboard.
POST https://api.wordpress.org/core/version-check/1.7/
?version=5.2.1
&locale=en_GB
cURL error 28: Resolving timed out after 3523 milliseconds
+
wp_version_check()
Plugin: wordfence
Any clues?
Thanks
Rob
Replies: 0
Why does my live traffic, such as myself, read me as a “Redirect” and not a “Human”? Up until a few days ago, I was a “Human”.
Now the “Redirect” (previously known as “Human”) doesn’t show where my traffic is coming to the site from.
How can I fix?