WordPress.org

Català

Aconseguiu el WordPress
WordPress.org

Plugin Directory

Scinorx Malware Guard

Scinorx Malware Guard

Per Scinorx Technologies Inc
Baixa

Descripció

Scinorx Malware Guard helps WordPress site owners run a practical local scan after a suspected compromise or as part of regular website maintenance.

The plugin looks for common signs that deserve review:

  • Modified or missing WordPress core files using official WordPress checksums when available.
  • PHP-like executable files inside uploads.
  • Suspicious PHP patterns often seen in injected code or unauthorized web shells.
  • Exposed backup, database, archive, and environment files in the web root.
  • Sensitive files that are writable by the current PHP process.

Scinorx Malware Guard is intentionally a detection and review tool. It does not automatically delete files, clean infections, or guarantee that a website is malware-free. If your website has been actively compromised, use this report alongside your host, backups, server logs, and professional remediation.

After a scan, admins may optionally send the diagnosis to Scinorx Technologies for review. This share action requires explicit consent and is never automatic. No account or paid service is required to use the local scan.

Privacy

Scan results are stored locally in your WordPress database and are not sent to Scinorx unless an administrator explicitly submits the optional diagnosis form. That form sends contact details, website URL, requested help type, urgency, environment metadata, severity counts, finding paths, recommendations, and the optional message entered by the administrator.

The core file integrity check may request official checksum data from WordPress.org when your WordPress installation supports it.

External Services

This plugin can contact external services in two specific cases:

  • WordPress.org core checksum service: The core integrity check may request official WordPress core checksum data from WordPress.org to compare local core files against trusted hashes. This request can include the installed WordPress version and locale. Service endpoint: https://api.wordpress.org/core/checksums/1.0/
  • Scinorx Technologies diagnosis review: After a scan, an administrator may optionally submit the «Send Diagnosis to Scinorx» form. This sends the administrator’s name, email address, website URL, requested help type, urgency, optional message, plugin version, WordPress version, PHP version, scan timestamp, scan score, severity counts, finding titles, finding paths, and recommendations to support@scinorx.com for review. This is never sent automatically.

Scinorx privacy policy: https://scinorx.com/privacy-policy/

Instal·lació

  1. Upload the plugin files to the /wp-content/plugins/scinorx-malware-guard directory, or install the plugin through the WordPress Plugins screen.
  2. Activate the plugin through the Plugins screen in WordPress.
  3. Open Malware Guard in the WordPress admin menu.
  4. Run a local scan and review the findings.

PMF

Does this plugin remove malware?

No. Scinorx Malware Guard identifies indicators that need review. It does not automatically remove or quarantine files. This avoids accidental deletion of legitimate custom code.

Does a clean scan mean my site is definitely safe?

No. No WordPress plugin can guarantee that a site is clean. The scan checks common file-level indicators and should be used together with server logs, backups, hosting tools, and professional review when compromise is suspected.

Are scan results sent to Scinorx?

Not automatically. Reports are stored locally in WordPress. An administrator can choose to send a diagnosis to Scinorx by submitting the optional share form and agreeing to the consent checkbox.

Why does the plugin check WordPress core checksums?

Modified core files can be a compromise indicator. When checksum data is available, the plugin compares local WordPress core files with official WordPress.org hashes for the installed version and locale.

Why does the scan mention default WordPress themes I removed?

Official WordPress checksum data can include bundled default themes and sample plugins, but many production sites intentionally remove unused packages. Scinorx Malware Guard ignores missing bundled default theme and sample plugin files so normal cleanup does not create noisy findings. Missing files that are commonly removed for hardening, such as xmlrpc.php, public readme files, or license files, may be grouped into a single informational note.

Ressenyes

No hi ha ressenyes per a aquesta extensió.

Col·laboradors i desenvolupadors

«Scinorx Malware Guard» és programari de codi obert. La següent gent ha col·laborat en aquesta extensió.

Col·laboradors

Traduïu «Scinorx Malware Guard» a la vostra llengua.

Interessats en el desenvolupament?

Navegueu pel codi, baixeu-vos el repositori SVN, o subscriviu-vos al registre de desenvolupament per fisl de subscripció RSS.

Registre de canvis

1.0.0

  • Initial release.

Meta

Valoracions

Encara no s'ha enviat cap ressenya.

Your review

Visualitzeu totes les ressenyes

Suport

Teniu quelcom a dir? Necessiteu ajuda?

Visualitza els fòrums de suport