Hi @tigrokon, thanks for reaching out.
The Wordfence security team constantly updates an extensive database of malware vulnerabilities and uses this database to create malware signatures. With these signatures, Wordfence conducts regular malware scans to identify attacks from human hackers or bots. The scan looks at all your WordPress files and your website’s posts, comments, and pages to determine if an attack has occurred. If the scan identifies malicious code or a backdoor attack, you’ll get an alert when you log in to your website’s dashboard. If you prefer, Wordfence can send you an email notification about any security issues it identifies during a scan.
Our team writes detection signatures for new malware variants and regularly deploys those signatures to your Wordfence installation, giving you the ability to detect even the newest malware. Our malware signatures are used by your firewall to prevent hackers from uploading malware, and they are used by your Wordfence scanner to detect any malware in your filesystem.
The security scanner included with the free version of Wordfence alerts you when your site is running vulnerable or outdated plugins, themes, or core files. Additionally, our scanner compares your core files, themes, and plugins with known clean versions in the www.remarpro.com repository. It checks their integrity and allows you to repair changed files by reverting them to a pristine, original version. The Wordfence scanner also scans file contents for malware, bad URLs, backdoors, SEO spam, malicious redirects, and code injections, allowing you to delete malicious files. Wordfence-free users receive signatures to detect new malware 30 days after they are released to our premium customers.
I hope this helps. Let me know if you have any further questions.
Thanks,
Mark
