wfphil

Hi @angelagrey

Please send a message to genbiz [at] wordfence [dot] com and the threat intelligence team can send you a reply.

Hi @serafinnyc

Thank you for the update but as stated previously our plugin does not send any emails as we use the WordPress mail function to send emails, so WordPress sends our plugin related emails.

Your first avenue of investiagtion is to ask your hosting provider and/or SendGrid if they can see why all WordPress emails are not being sent as WordPress appearing to not send all email is a common problem.

Hi @asafm7

Thank you for the update and sorry this one got missed.

The email subject field will contain “Problems found on [site’s your domain name]” if the scanner has scan results to inform you of.

Hi @serafinnyc

Thank you for the update but our plugin doesn’t send any emails at all. We we use the WordPress mail function to send Wordfence related emails so you will need to ask your hosting provider and your email service provider if they can find out why WordPress is not sending all email.

Hi @thegp

Thank you for the update.

The report is showing that WordPress can’t send POST requests susccessfully back to your hosting server via the error in the test “Connecting back to this site” so you will need to investigate what the cause is so that it can be rectified. First tests are to test the theme and all other plugins as outlined in my last reply. This should ideally be done on a staging site so that you don’t have to take your site offline to carry out these tests. Our scanner needs to be able to send requests back to your web server so this problem needs to be investigated and fixed.

Hi @nestormarius

Thank you for the update and you’re welcome!

Hi @nestormarius

Our tables are not deleted automatically as you have to enable the option in the plugin for the tables to be deleted upon deactivation. You can use our companion plugin Wordfence Assistant to delete the tables. You can also remove them manually after creating a backup of your database.

Hi @thegp

The report is showing that WordPress can’t send POST requests susccessfully back to your hosting server via the error in the test “Connecting back to this site”.

If you have a staging site you can switch to a default theme such as Twenty-Twenty Four and see if that fixes the error. If it does then your normal theme needs to be fixed.

If it isn’t the theme you can deactivate all other plugins and activate them one by one until the error appears again and you will find the plugin causing the problem and ask that plugin support team to help you fix the fault.

Hi @shiw06

This is likely to be a problem with Atomicorp’s ModSecurity server firewall rule with ID 390149 that breaks our plugin admin pages.

If you don’t know that your hosting account is using ModSecurity server firewall then your hosting provider can disable only that rule for now, that would be better than disabling the ModSecurity server firewall for your hosting account altogether.

Hi @serafinnyc

Our plugin doesn’t send any emails. WordPress does that as we use the WordPress mail function to send Wordfence related emails. You can ask your hosting provider and your email service provider if they can see why WordPress is not sending all email.

Hi @cpkn

You can send your sample to our email address samples [at] wordfence [dot] com

Please note that users of the free version of the plugin get malware signatures 30 days after premium users and we are forbidden from discussing the premium version of our plugin here.

Our site cleaning guide is below that you can follow:

https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/

Hi @aisupportteam

This forum is strictly only for the free version of the Wordfence security plugin for WordPress.

There isn’t any support at all for the free version of the Wordfence CLI web server malware and vulnerability scanner and our documentation on how to use it is below:

https://github.com/wordfence/wordfence-cli/tree/main/docs

If you have a paid license key for Wordfence CLI then you can ask for help at https://support.wordfence.com

Hi

The free version of our plugin does not block IP addresses based on their location so it appears that something else is the cause of the blocking.

The 502 Bad Gateway error is not a blocking page and you will need to ask your hosting provider and GoDaddy/Sucuri what the cause is.

And you say that you still have blocking after you have uninstalled our plugin so our plugin can’t be involved. The likely cause is the GoDaddy/Sucuri security settings for the geolocation blocking.

Hi

Our plugin doesn’t send any emails. WordPress does that as we use the WordPress mail function to send Wordfence related emails. You can ask your hosting provider if they can see why WordPress is not sending all email.

WordPress not sending all emails is a common problem.

Many people find using an external SMTP email server plugin to send WordPress mail to be far more reliable than their hosting provider’s email server.

Another possibility is that a mail spam filter somewhere along the chain is possibly seeing the scan result emails as spam or potentially malicious due to misinterpreting the content of the emails and aren’t reaching your email account to even go into the spam folder.

Hi @carolineelisa

Possible reasons are:

As you are using the free version of Wordfence then you won’t have the latest malware signatures that Premium customers have and we are forbidden from discussing the Premium version here in the forum.

The infection may be in a database table that our plugin doesn’t scan.

We may not have a malware signature for that malware yet.

You are welcome to follow our site cleaning guide below:

https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/