We'll add a new condition when getting global variables in next version. There will not be such notices.
if you remember here was a topic someone found a hole in wpForo i replied him in bad manner maybe he is doing this as a revenge to me.
I don't think so. As I explained before the main issue was the unprotected WordPress. We had not any anti-spam, anti-malware, ant-virus and anti-attack solutions on this website. wpForo had a small holeon profile page, which has been fixed with 1.0.0 version. We've mentioned in 1.0.x changelog that we made lots of security changes so we can release wpForo stable version. Started from 1.0.0 wpForo has not any security issue.
Also you can see there is no any report on well known plugin scaner service wpvulndb.com:
https://wpvulndb.com/plugins/wpforo
PS: I think this is just a hosting scanning or anti-attack system calls. There may be lots of hosting security and statistic functions which doesn't use browser headers when call website.
Hello Robert
I not say this is WpForo but i mean maybe that person is doing in other ways some attack, anyway it seems is something internally caused not found yet other people using Wordfence have report same thing.
Between i installed one plugin PHP Compatibility i tested all plugins and themes found some with errors and warnings including WP Foro not sure if this is important but here what it say,note this only to let you know your plugin is super good i'm waiting to buy addons.
FILE: /wp-content/plugins/wpforo/wpf-includes/class-phrases.php
--------------------------------------------------------------------------------------------------------------------------------------------
FOUND 0 ERRORS AND 1 WARNING AFFECTING 1 LINE
--------------------------------------------------------------------------------------------------------------------------------------------
9 | WARNING | Function name "__construct" is discouraged; PHP has reserved all method names with a double underscore prefix for future use
--------------------------------------------------------------------------------------------------------------------------------------------
Thank you for all the help! If i find something about that IP will post back for other people to know in future.
Hello
I moved from Godaddy Managed WP and that IP is gone somehow i feel it was related with WP Cron which is limited on that type of host, maybe it was some kind of cron killer added by them because it was happening every 10 minutes with htpasswd enabled and the only plugin that does this is s2member for Automatic EOT through WP Cron,anyway problem solved.
Thank you all for support.
