BroodWeb Malware Scanner
| 开发者 |
broodweb
jubayerhossain |
|---|---|
| 更新时间 | 2026年4月26日 09:56 |
| PHP版本: | 7.4 及以上 |
| WordPress版本: | 6.9 |
| 版权: | GPLv2 or later |
| 版权网址: | 版权信息 |
详情介绍:
BroodWeb Malware Scanner is a professional security plugin for WordPress that helps site owners, agencies, and developers investigate suspicious files and quickly focus on the highest-risk findings.
The plugin scans WordPress core, plugins, themes, uploads, must-use plugins, and selected database tables. Results are grouped by severity and can be filtered by category, file type, path, and finding.
Key features
- Deep file scanning for WordPress core, plugins, themes, uploads, MU plugins, and root files.
- Detection rules for common malware indicators such as
eval(),base64_decode(),gzinflate(),shell_exec(), obfuscated strings, suspicious filenames, and PHP files inside uploads. - Database scanning for suspicious content in options, posts, and users.
- Quarantine tools to move suspicious files to a safe location and restore them later if needed.
- Scan history with stored reports for comparison.
- Risk filters, category filters, file-type filters, keyword search, and collapsible findings.
- Export reports as JSON or CSV.
- AJAX-based chunked scanning to reduce timeouts on larger websites.
- Optional scheduled scans and email alerts.
- Always create a full backup before cleaning malware.
- Review flagged files manually before quarantining or deleting anything.
- Large minified JavaScript files may still create false positives, so use the filtering tools to focus on PHP files and higher-severity results first.
安装:
- Upload the plugin folder to the
/wp-content/plugins/directory, or install the ZIP file from Plugins > Add New > Upload Plugin. - Activate the plugin through the Plugins menu in WordPress.
- Go to Tools > BroodWeb Malware Scanner.
- Run a scan and review the results.
- Optionally configure scan schedule and email alerts in the plugin settings.
常见问题:
Does this plugin remove malware automatically?
No. BroodWeb Malware Scanner is an investigation and triage tool. It helps you detect suspicious files and content so you can review them safely before taking action.
Does it scan the database?
Yes. The plugin includes a database scanner that checks selected WordPress tables for common malware indicators.
Can I export the results?
Yes. Reports can be exported in JSON and CSV formats.
Can I quarantine flagged files?
Yes. Suspicious files can be moved to quarantine and restored later if needed.
Will it work on large sites?
The scanner uses AJAX chunking to reduce the risk of timeouts, which helps on larger sites and shared hosting environments.
更新日志:
1.3.2
- Version bump to stay in sync with BroodWeb Malware Scanner Pro 1.3.2.
- Version bump to stay in sync with BroodWeb Malware Scanner Pro 1.3.1.
- Fixed the plugin textdomain loading path for packaged installs.
- Fixed integrity monitor scheduling so the active cron hook is not cleared on every request.
- Cleaned the release package for WordPress.org submission.
- Polished admin text and packaging metadata.
- Complete rewrite with tabbed interface and dark admin UI.
- AJAX chunked scanning with real-time progress bar.
- Quarantine system with restore and delete.
- Scan history and per-scan diff.
- Inline file viewer with highlighted suspicious patterns.
- Filterable and sortable results table with CSV and JSON export.
- False-positive whitelist with manual entry.
- Database scanner.
- Scheduled scans via WP-Cron.
- Email alerts with configurable threshold.
- Added sticky table headers.
- Added collapsible findings.
- Improved mobile spacing.
- Added category counts in dropdowns.
- Rebranded plugin as BroodWeb Malware Scanner by BroodWeb.
- Added uninstall cleanup support.