WordPress FAQ: Dealing with Malware

January 10th, 2011
WordPress, WordPress FAQs

Recentently, we published two FAQs on finding free themes and free plugins, and both contained strong warnings about malware and steps to avoid infection, but what if your WordPress blog is already infected?

The first thing to do is to confirm the existence of a malware infection by running the Exploit Scanner plugin. Once you have confirmed the existence of malware, refer to this handy Codex guide. Why simply link to the guide? Because this handy guide is updated by WordPress’ volunteer community to present the latest tips and tricks to clearing the latest malware infections from your blog.

Of course, the best way to prevent a malware disaster is to regularly backup your database and files, but WordPress’ volunteer community has also compiled a list of recommended security measures.

This is the fourth entry in our hopefully long-running WordPress FAQ series. What did you think, and what questions would you like us to answer next?




  1. Jonathan Dingman (1 comments.) says:

    On top of any plugin, you can also have your site scanned regularly by Sucuri, a great malware scanning service.

    In addition, if you do get effected, you can pay for their service and they will help remove the malware from your site.

    I definitely recommend Sucuri for anyone that needs malware protection … which is pretty much everyone :)

Obviously Powered by WordPress. © 2003-2013

page counter