wfjoshc

Hi @wpwebsitesnet

Thanks for reaching out!

If you head over to Firewall -> Firewall Options -> Advanced Firewall options -> Allowlisted Services, we have a prebuilt checkbox that will automatically allow list all of Managewp’s IP addresses

I hope this helps!

Thanks,

Joshua

messages like Cron unschedule event error for hook ... were added to WordPress core recently, and are not a PHP error or warning, but are intentionally logged by WordPress. It does also appear to be a race condition, and has been an issue in WordPress for years, but has just happened silently — for at least Wordfence’s cron jobs, it’s not harmful.

The issue is basically that WordPress can sometimes start two copies of wp-cron to run the same jobs, triggered by multiple hits on the site starting close together, because wp-cron’s locking is imperfect — the jobs may run twice, but when one finishes, it updates the list of cron jobs, and then when the other finishes, it’s unable to make the same update, because it’s already done.

Ultimately, the Cron ran properly and there is nothing to worry about!

Thanks,

Joshua

Hi @jorihlen

messages like Cron unschedule event error for hook ... were added to WordPress core recently, and are not a PHP error or warning, but are intentionally logged by WordPress. It does also appear to be a race condition, and has been an issue in WordPress for years, but has just happened silently — for at least Wordfence’s cron jobs, it’s not harmful.

The issue is basically that WordPress can sometimes start two copies of wp-cron to run the same jobs, triggered by multiple hits on the site starting close together, because wp-cron’s locking is imperfect — the jobs may run twice, but when one finishes, it updates the list of cron jobs, and then when the other finishes, it’s unable to make the same update, because it’s already done.

Ultimately, the Cron ran properly and there is nothing to worry about!

Thanks,

Joshua

Hi @loopforever

Would it be possible to head over to live traffic and send me a screenshot of these blocks?

Thanks,

Joshua

Hi @chihi108

We are aware that Cloudflare has changed recently on how to allowlist IP addresses

I recommend checking with them to get these IP’s added to the white list
44.239.130.172
44.238.191.15
35.155.126.231
54.68.32.247
44.235.211.232
54.71.203.17

Thanks,

Joshua

Hi @mcmdet

Thanks for reaching out!

Since you have seem to successfully allow list Rank Math, can you please head over to the Blocking section (not live traffic) to see if Rank Math is still blocked there?

If it is, you should be able to remove that block.

Thanks,

Joshua

Hi @mcmdet

Thanks for reaching out!

Since you have seem to successfully allow list Rank Math, can you please head over to the Blocking section (not live traffic) to see if Rank Math is still blocked there?

If it is, you should be able to remove that block.

Thanks,

Joshua

Hi @loopforever

Thanks for reaching out!

Would it be possible to get back to me with a screenshot of the blocking page your users are receiving?

Thanks,

Joshua

Hi @adya2

Thanks for reaching out!

This looks to be an issue with the database, I recommend checking with your host to see if they can see any database issues or if they switched you away from MySQLi

Please let me know how it goes!
Thanks,

Joshua

Hi @chihi108

Thanks for reaching out!

Are you running cloudflare or any other proxies/firewalls?

Please let me know!
Thanks,

Joshua

Hi @headplus

Thanks for letting us know!

I highly recommend reaching out to Cloudflare in this instance as our instructions were based on their previous instructions

You can ask them how to allowlist our IP range and your server IP, and also how to disable ‘bot fight’ mode

I hope this helps!
Thanks,

Joshua

Hi @txtom100
Thanks for getting back to me!

The set of hits in that screenshot at least is only being blocked because you had blocked your own IP manually. This is why it shows your IP attacking your site.

The?.user.ini?hit is probably Wordfence’s scan checking if that file is publicly accessible, since the user-agent is a WP version. (The user-agent is possible to spoof, but there’s no reason to believe this one hit is malicious on its own.)

The?deleteme.*.php?hits might actually be GoDaddy.

I hope this helps to clarify!
Thanks,

Joshua

Hi @arabacademy

Thanks for reaching out!

We do not recommend using two security plugins at the same time due to issues like this.

If you can get access to your file system, simply locate the Wordfence folder in the plugins section and rename it to something else!

I hope this helps!
Thanks,

Joshua

Hi @arabacademy

Thanks for reaching out!

We do not recommend using two security plugins at the same time due to issues like this.

If you can get access to your file system, simply locate the Wordfence folder in the plugins section and rename it to something else!

I hope this helps!
Thanks,

Joshua

Hi @khoavo

Can you try restarting memcache and see if that works?

If that doesn’t work, and there are other sites in your server, that could be the issue too

Let me know!

Thanks,

Joshua