Here are a couple of plugins I always rely on for identifying and fixing malware on hacked WordPress websites.
Even with these tools, ridding a hacked site of malware and malicious code is not a task for the faint of heart. If you want to leave things in the hands of professionals, I recommend that you trust Sucuri to clean your website and restore it to its former glory.
Sucuri secure your site, so that you don’t have to. Through their professional security analysts, Sucuri offer a number of features to protect your site including malware scanning and detection, malware clean-up, security monitoring, malware prevention and more.
This innovative new plugin, from the makers of the excellent BlogVault service, works in tandem with a remote service that relieves your hosting of the processing burden incurred by continuous security scans. The plugin also hardens your site according to current best practices, reducing the risk of you getting infected in the first place.
The included backup service also conserves your hosting resources by using an ingenious “incremental backup” technology, perfected during their years running BlogVault, which only backs up the bits of your site that have not been backed up already.
Your website is continuously monitored service – so that even the most complex infections are detected quickly, allowing you to carry out a one-click malware removal before Google or other search engines notice the problem and delist your site. This is the most advanced WordPress security plugin/service so far but we expect the other providers to follow their lead.
MalCare also offers a one-time WordPress Malware Removal Service that will clean your WordPress website in a jiffy.
Wordfence Security is a free enterprise class security plugin that includes a firewall, anti-virus scanning, malicious URL scanning and live traffic including crawlers. Wordfence is the only WordPress security plugin that can verify and repair your core, theme and plugin files, even if you don’t have backups.
Wordfence Security is 100% free, however they also offer a Premium API key that gives you access to their premium support ticketing system along with two factor authentication via SMS, country blocking and the ability to schedule scans for specific times.
- Automatic removal of “Known Threats” and “Back-doors”.
- Automatically block SoakSoak and other malware from exploiting the Revolution Slider Vulnerability.
- Patch wp-login to block Brute-Force attacks.
- Download Definition Updates to protect against new threats.
- Automatically upgrade vulnerable versions of timthumb scripts.
- Customize Scan Settings.
- Run a Quick Scan from the admin menu or a Complete Scan from the Settings Page.
Backup Buddy’s primary strength is that of creating backups and restoring those backups later. However it also has a malware detection feature which is very accurate and is powered by Sucuri’s own scanning feature. I highly recommend that you have a copy of Backup Buddy running on all your websites as I do.
Some of its other features include email notifications, server tools, database scans and even a migrate function for those developers who like to work locally then transfer their site to a live domain.
In addition to the plugins mentioned above, which can be used on an ongoing basis, or as an antidote to clean hacked sites, I also make use of several other plugins to beef up security on WordPress sites:
Login LockDown records the IP address and timestamp of every failed login attempt. If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that range. This helps to prevent brute force password discovery.
Currently the plugin defaults to a 1 hour lock out of an IP block after 3 failed login attempts within 5 minutes. This can be modified via the Options panel. Admisitrators can release locked out IP ranges manually from the panel.
Centrora Security is a new plugin that’s modified from OSE Firewall Security. A WordPress Firewall Security plugin to protect your WordPress sites from attacks and hacking. The built-in malware and security scanner helps you identify any security risks, malicious codes, spam, virus, SQL injection, and security vulnerabilities.
Some of its new features include a database backup function, central security management integration with Centrora Panel, s file upload scanning function and even a Google authenticator (2-step authentication) function. You can find more information on their website.
Keep an audit log and track of everything that is happening on your WordPress and WordPress multi-site with WP Security Audit Log plugin to ensure user productivity and identify WordPress security issues before they become a security problem.
By using the WP Security Audit Log security plugin it’s very easy to track suspicious user activity before it becomes a problem or a security issue. This security monitoring and auditing plugin is developed by WordPress Security Consultants and Professionals WP White Security.
If you enjoyed this post, make sure to subscribe to WP Mayor’s RSS feed.