Title: Firewall breached
Last modified: August 30, 2016

---

# Firewall breached

 *  Resolved [micvideo](https://wordpress.org/support/users/oceandigital/)
 * (@oceandigital)
 * [10 years, 9 months ago](https://wordpress.org/support/topic/firewall-breached/)
 * Something is forcing wordfence whitelist these files:
 * /favicon.ico
    /apple-touch-icon*.png /*@2x.png
 * and wordfence does not detect the peoblem at all. Obviously some kind of script
   is injecting these lines into the wf tables. When i delete the entries they just
   come back. Any idea how to clean this up?
 * [https://wordpress.org/plugins/wordfence/](https://wordpress.org/plugins/wordfence/)

Viewing 4 replies - 1 through 4 (of 4 total)

 *  [WFBrian](https://wordpress.org/support/users/wfbrian/)
 * (@wfbrian)
 * [10 years, 9 months ago](https://wordpress.org/support/topic/firewall-breached/#post-6467717)
 * Hi,
 * Which table are you seeing those files injected into?
 * If you feel you’ve been hacked, then start here:
 * [https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/](https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/)
 * Thanks,
    Brian
 *  Thread Starter [micvideo](https://wordpress.org/support/users/oceandigital/)
 * (@oceandigital)
 * [10 years, 9 months ago](https://wordpress.org/support/topic/firewall-breached/#post-6467719)
 * Thanks for responding. Those lines show up in the wordfence options page under“
   Whitelisted 404 URLs (one per line)”
 * Ill chek the link you gave me. Im not sure if ive been hacked, i dont know wp
   well. Do you recognize those lines?
 *  [WFSupport](https://wordpress.org/support/users/wfsupport/)
 * (@wfsupport)
 * [10 years, 8 months ago](https://wordpress.org/support/topic/firewall-breached/#post-6467776)
 * These files are auto whitelisted. The reason is because apple’s retina display
   looks for any image on your page as [imagename@2x.png](https://wordpress.org/support/topic/firewall-breached/imagename@2x.png?output_format=md).
   These images are special formats for the retina display which is fine if you 
   have them. If you don’t, then a lot of 404’s are generated every time a user 
   using a retina display hits your page and depending on your firewall settings
   that can block or throttle them. The same is true for apple-touch-icon*.png
    
   The favicon.ico is the little icon that shows on your browser’s tab on a site.
   Some people have them and other’s don’t. This is why it is included.
 * You aren’t hacked. This is expected behavior. See below for details.[http://docs.wordfence.com/en/Wordfence_options#Whitelisted_404_URLs](http://docs.wordfence.com/en/Wordfence_options#Whitelisted_404_URLs)
 * tim
 *  Thread Starter [micvideo](https://wordpress.org/support/users/oceandigital/)
 * (@oceandigital)
 * [10 years, 8 months ago](https://wordpress.org/support/topic/firewall-breached/#post-6467805)
 * Ooooooomg. Thank you.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Firewall breached’ is closed to new replies.

 * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865)
 * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wordfence/)
 * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/)

 * 4 replies
 * 3 participants
 * Last reply from: [micvideo](https://wordpress.org/support/users/oceandigital/)
 * Last activity: [10 years, 8 months ago](https://wordpress.org/support/topic/firewall-breached/#post-6467805)
 * Status: resolved