Title: Security issue with my site? Last modified: August 30, 2016 --- # Security issue with my site? * [itmonitor](https://wordpress.org/support/users/itmonitor/) * (@itmonitor) * [10 years, 9 months ago](https://wordpress.org/support/topic/wordpress-security-issue-4/) * Hello, * I noticed several access intents to files inside WordPress and WordPress themes, like for instance * /wp-content/themes/(theme-name)/(subfoldername)/css/loading.gif /wp-content/ plugins/newsletters-lite/css/jquery-countdown.css * There is no loading.gif in the CSS folder and in the second case, the newsletters- lite plugin is not and has never been installed in this server. * The IPs originating those access are not related to visitors that usually visit my website. I wonder if those are exploits/scanners that are posing a risk to my WordPress website. * Any advice is welcome. Viewing 4 replies - 1 through 4 (of 4 total) * [catacaustic](https://wordpress.org/support/users/catacaustic/) * (@catacaustic) * [10 years, 9 months ago](https://wordpress.org/support/topic/wordpress-security-issue-4/#post-6447047) * Yes, they are expliot scanners. There’s (literally) 1,000’s of them around, and they’ll keep on trying. But, seeing as how you don’t have those files anywhere, there’s no risk form those ones. It’s still worth keeping an eye in what URL’s are being requested, and installing one of the many good secrity plugins. * Thread Starter [itmonitor](https://wordpress.org/support/users/itmonitor/) * (@itmonitor) * [10 years, 9 months ago](https://wordpress.org/support/topic/wordpress-security-issue-4/#post-6447089) * Many thanks catacaustic. I noticed in other cases that those scanners tried to access files that actually exist in my website install. This poses a serious risk. Please, what security plugins would block those intruders? * Moderator [Jan Dembowski](https://wordpress.org/support/users/jdembowski/) * (@jdembowski) * Forum Moderator and Brute Squad * [10 years, 9 months ago](https://wordpress.org/support/topic/wordpress-security-issue-4/#post-6447102) * As long as you are up to date with your themes, plugins and WordPress version then you really do not need to worry about probes like those. * If you _are_ compromised then it’s too late and you’d need to delouse your site. * _*Drinks more coffee*_ * I don’t see anything that indicates your compromised, I’m just trying to be thorough. 😉 * Thread Starter [itmonitor](https://wordpress.org/support/users/itmonitor/) * (@itmonitor) * [10 years, 9 months ago](https://wordpress.org/support/topic/wordpress-security-issue-4/#post-6447216) * Jan, thank you. Please, which chmod should I attribute to the non webpages wordpress directories in the server, in order they cannot be accessed by external users? At the same time, the chmod code should not block normal visitors naviagtion in the website. Any advice is welcome! Viewing 4 replies - 1 through 4 (of 4 total) The topic ‘Security issue with my site?’ is closed to new replies. ## Tags * [exploits](https://wordpress.org/support/topic-tag/exploits/) * [scanner](https://wordpress.org/support/topic-tag/scanner/) * [security issue](https://wordpress.org/support/topic-tag/security-issue/) * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/) * 4 replies * 3 participants * Last reply from: [itmonitor](https://wordpress.org/support/users/itmonitor/) * Last activity: [10 years, 9 months ago](https://wordpress.org/support/topic/wordpress-security-issue-4/#post-6447216) * Status: not resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics