Have you ever gotten malware on your blog and felt vulnerable? You’ve been putting a lot of hard work into your blog then behold, you and your readers are unable to see any blog posts. You probably tried all the free ways to get rid of it, but yet it didn’t suffice. Well if all else fail, Sucuri Security is a great solution to look into and I will talk about what it can do for you in the following post…
We all have our bad days, and if you’re a serious blogger, then getting really bad malware is one of them. Yes like computers you’re blog is not to immune from getting hit with malware and other types of virus’.
A lot of us have this misconception that websites and blogs are more prone to being targeted, but on the contrary, there are many common bloggers like you and me that actually become the victims. Now I don’t want to go into detail about what to do and what not to do, but instead I want to skip all this. I want to give you a more detail of the steps I took and go a little more into detail about the solution I used and the features it has.
A couple of months ago, my blog had gotten really bad malware that hinder me from even accessing my blog. Luckily one of my blogging friends, DeeAnn Wallace Rice was able to help me troubleshoot the problem.
In order to get rid of the malware I went through a series of steps:
- Went to Google Webmaster Tools to delete any crawl errors which didn’t help to much
- I also used Google Webmaster Tools to check for Malware which it didn’t find any
- I deactivated my plugins and reactivated them one by one to see if it was a plugin issue through FileZilla which is an FTP program.
- I deactivated my theme to see if it was the issue
- Then finally DeeAnn introduce me to Sucuri Security which really was the solution in rectifying the malware problem.
Sucuri Security offers a free scan, free plugin, and also a paid version. Now for those of you who are really into blogging, coding, and know how to maneuver through coding, then the free version is all you need to figure out how to clean your site.
But for those of you that have no clue as to what to do, then it would definitely be wise to get the paid version. But I’m going to give you a little more detail of some of the features that the free version offers and the paid version.
Although I signed with my Hosts’ security program, it still didn’t prevent my site from being compromised. There are some clever hackers out there, and sometimes they’ll hide code that can go unnoticeable that can hurt your blog in the long run.
One of the actions that you can take right now is to install the Free Sucuri Plugin that will monitor your web or blogsite.
With the plugin, you can monitor and get a report of anything malicious that’s going on with your site. Some of things the the Sucurity Scanner will check are:
- Malicious Iframes
- Suspicious Redirects
- Blackhat SEO Spam
- See if your site has been blacklisted
Coming from experience, my site has been blacklisted by Google and also, of course, I had some malicious malware on my site.
One of the other features I like about the Free Sucuri Plugin:
- Checks to see the files inside your wp-content folder up to the last 30 days
- Outdated Plugins
- Outdated Themes
- The Last Logins from newest to oldest
Updating our plugins and themes is usually no problem for the “regular blogger”. But as I mentioned before, as far as getting rid of files such as going into your wp-config or wp-content folder you may want to leave it for the pros.
Now as far as the pros, it’s usually not that cheap unless you know how to handle malware problems yourself. But I was pretty surprise with the cost of Sucuri, but I’ll leave that to the end of this post. Now I like to show what you get paid version!
Not only Sucuri Scans your site, but also you can set it to monitor your site automatically as much as every few hours to make sure that your site is clean of anything that will harm it.
- it checks Whois which is an internet directory of who owns a domain. If this information is changed, say for instance my site www.shermansmithblog, then I will be notified
- it Checks DNS (Domain Name System) to tie your website domain (Ex: www.shermansmithblog) to an ip address. Since we humans don’t remember a site by the ip address, we tend to remember the domain name or website address. The monitoring well notify you of any changes of the ip address which is associated to the website domain.
Server Side Scanning
Now although it’s great to check your website or blogsite from the front end, it’s also vital to check what’s going on in the back end. Sometimes hacker will create a ‘backdoor’ enable them to also get a hold of your older posts.
This is why it’s imperative to scan the webserver, or the space provided by your host, of any suspicion that’s going on with your files there.
One extra feature that helps protect your uploads is the 1-Click Hardening Feature. As I mentioned before, a hacker can get to your older posts, and also they can get to your uploads. One popular thing they like to do is hide malicious code into different directories on the server end.
With the 1-Click Hardening Feature it will make these different directories unbrowsable and won’t allow php execution. As of right now I do not have this with the plan that I’m on, but will definitely add it. With my plan is going to cost an extra $10.
Malware Removal Service
Now since I’m not an expert at removing malware and cleaning up blogs, and I assume most of you aren’t either, the Malware Removal Service is probably the best service as far as I know since they removed all of the malware from my blog.
Here are some of the things that they clean up:
Malicious and Hidden iFrames
and much more…
In order for them to clean it up, you will have to fill out a trouble ticket with your account information for the ftp program you use to upload any files or plugins. I usually install plugins from wordpress, but I also use FileZilla as my FTP program to also do the same. They all go to the same place which is your host or webserver.
Once you fill out your account information, Sucuri will upload tools that will enable them to authenticate into your account in order to cleanup all of those malicious codes and files left by the hackers.
You will then be notified via email whenever they finished with your site.
The Cost Of Sucuri
I just scratched the surface of all Sucuri can do for you. Now it’s time for the price.. They have 3 main packages. for one website, which is what I have, is $89.99/year, for 2-5 websites its $189.99/year, for 6-10 websites its $289.99/year
For all that it can do, at least for one website, I believe you’re getting more for your money. This is a service that prevented me from starting all over from scratch which I wouldn’t have like to do at all.
But use your own judgement on whether this would be something that will benefit you in the long run. Yes you can get by without something like this for a while, but eventually, like it did to me, it will catch up with you.
If this is something you want to look into and maybe get started with then Click Here To Get Started.
I also want to keep in mind that the link is my affiliate link and if you sign up I will get a commission.
Now It’s Your Turn!
Has your site ever been compromised by suspicious malware? What steps did you take to get rid of it? Do you find Sucuri as something that will benefit you? Do you use any other services like this and if so how is it going for you? Please share your comments below and share this post with you friends. I look forward to read them!
Follow Me On Twitter – Follow Sherman Here
Join My Facebook Fan Page – Sherman’s Fan Page