Security issue with my site?

  • Hello,

    I noticed several access intents to files inside WordPress and WordPress themes, like for instance

    /wp-content/themes/(theme-name)/(subfoldername)/css/loading.gif
    /wp-content/plugins/newsletters-lite/css/jquery-countdown.css

    There is no loading.gif in the CSS folder and in the second case, the newsletters-lite plugin is not and has never been installed in this server.

    The IPs originating those access are not related to visitors that usually visit my website. I wonder if those are exploits/scanners that are posing a risk to my WordPress website.

    Any advice is welcome.

Viewing 4 replies - 1 through 4 (of 4 total)

  • Yes, they are expliot scanners. There’s (literally) 1,000’s of them around, and they’ll keep on trying. But, seeing as how you don’t have those files anywhere, there’s no risk form those ones. It’s still worth keeping an eye in what URL’s are being requested, and installing one of the many good secrity plugins.

    Thread Starter itmonitor

    (@itmonitor)

    Many thanks catacaustic. I noticed in other cases that those scanners tried to access files that actually exist in my website install. This poses a serious risk. Please, what security plugins would block those intruders?

    Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    As long as you are up to date with your themes, plugins and WordPress version then you really do not need to worry about probes like those.

    If you are compromised then it’s too late and you’d need to delouse your site.

    *Drinks more coffee*

    I don’t see anything that indicates your compromised, I’m just trying to be thorough. ??

    Thread Starter itmonitor

    (@itmonitor)

    Jan, thank you. Please, which chmod should I attribute to the non webpages wordpress directories in the server, in order they cannot be accessed by external users? At the same time, the chmod code should not block normal visitors naviagtion in the website. Any advice is welcome!

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Security issue with my site?’ is closed to new replies.