WFGerroald

Hey @databell96,

Thanks for the update.

This sounds very frustrating and I am sorry to hear that you’re having to deal with it. I hope you are able to track this down. If you do find that it’s Wordfence please let us know.

Thanks,

Gerroald

Hey @ivan10grazie,

Thanks for the update. This rules out a server configuration issue.

Are you able to create a staging site on the same server to test for the conflict?

Thanks,

Gerroald

Hey @rox32,

Is the IP beginning with 51 your IP? If so, you might reach out to your host to see if there’s a configuration issue on their end since Wordfence is correctly identifying your IP.

Please let me know.

Thanks,

Gerroald

Hey @dipaksaraf,

Have you recently migrated the site?

Can you please make sure the code below is present and the paths are correct in your waf.php file found in the root directory?

php_value auto_prepend_file "/path_to_file/wordfence-waf.php"

auto_prepend_file = '/home/username/website.com/wordfence-waf.php'

Please let me know.

Thanks,

Gerroald

Hey @scorbaciufermecat,

Thanks for the feedback!

I’ve shared this with the developers and I’ll file a feature request. I don’t have a timeline on when/if it’ll be implemented but I’ll add a link to this thread so we can update you with any progress.

Please let us know if you have any other thoughts.

Thanks,

Gerroald

Hey @javabydeveloper,

Can you please share who you’re hosting with?

What errors are you or your site visitors seeing when the pages are blocked?

If you check How does Wordfence get IPs do any of the options show your correct IP?

https://www.wordfence.com/help/dashboard/options/#general-wordfence-options

Please let me know.

Thanks,

Gerroald

Hey @johanlinder,

You can change this by adjusting the Don’t let WordPress reveal valid users in login errors feature found in Wordfence > All Options > Additional Options.

Please let us know if anything else comes up.

Thanks,

Gerroald

Hey @bavokoservices,

Yes, with this large of a site it is expected to take longer. I really do feel that Scan Scheduling would be best for you. We recommend running the Scan once weekly preferably over the weekend, or whenever you have the lowest amount of traffic. There’s more about this in the article below.

https://www.wordfence.com/help/scan/scheduling/

Please do let us know if you have any other questions.

Thanks,

Gerroald

Hey @wpfan1000,

Thanks for the detailed information.

1) I can share the request for a “possible” Medium Severity issue. With that said, Wordfence file change detection doesn’t check the code that’s changed. It only alerts you to the change. The Scanner will be the feature that notifies you of possible malicious code.

2) I will create a test for this and take a look.

3) This percentage is an indication of how much the Firewall is Optimized. You can read more about this in the link below.

https://www.wordfence.com/help/firewall/#firewall-status

4) The Scan status circles indicate the current detection capability of your Wordfence scan. The article below can explain more about how to reach 100%

https://www.wordfence.com/help/scan/#scan-status

5) All of these percentages are to show you how much the features are configured. The lower the percentage, the less configuration. The higher the percentage means the higher, or max configuration. This is shown so you can see how much protection and detection is enabled in case you’d like to further configure it.

6) This is the original version, being the version that’s on the www.remarpro.com repository. I can talk with the Team about the wording.

7) If you can elaborate on what you’d like I can talk to the Team about adding it to the docs.

8) Thank you for the feedback! Feedback from our customers helps@glhq us to improve Wordfence :).

@glhq – Can you please open a new thread per the Forum Guidelines and we can take a closer look?

Thanks,

Gerroald

Hey @hyflex,

I’m going to go ahead and close this thread. However, if you have any other questions, or anything else comes up please let us know.

Thanks,

Gerroald

Hey @svencsiebert,

I’ve spoken with the developers about this and they can’t seem to find anything particularly malicious about the link. It seems we need more information to determine what it is, and if it’s malicious. Can you please ask AdWords for more information as to where they’re seeing this and why it’s considered malicious?

It’s worth noting that I also checked several other scanners and the site returned as clean as well.

Please let me know what they say.

Thanks,

Gerroald

Hey @wanderingon,

Can you please check the Wordfence > Tools > Diagnostics page to see if there are any errors showing?

Can you also check the PHP error logs for any relevant errors?

Please let me know.

Thanks,

Gerroald

Hey @kovels,

If they’re failing at some point, can you do the following so I can get the information I need to help you?

Kill the existing scan if it is still running (The “Start New Scan” button turns in to a “Stop” button while the scan is running)

Go to your Scan > Scan Options and Scheduling page and locate the “Performance Options”

Set “Maximum execution time for each scan stage” to 20 on the options page
Click to “Save Changes”

Go to the Tools > Diagnostics page

In the “Debugging Options” section check the circle “Enable debugging mode”

Click to “Save Changes”

Start a new scan

Copy the last 20 lines from the Log (click the “Show Log” link) or so of the activity log and paste them here

Thanks,

Gerroald

Hey @madhu756,

Can you please switch the Firewall into Learning Mode and let me know if it helps?

https://www.wordfence.com/help/firewall/learning-mode/

Please let me know how it goes.

Thanks,

Gerroald

Hey @punkum,

Thanks for the update, and happy to hear it!

I would disable debugging mode, and leave everything else as-is. However, if this issue crops up again please let us know.

Thanks,

Gerroald