Beginner's Guide for WordPress - Start your WordPress Blog in minutes.
Choosing the Best
WordPress Hosting
How to Easily
Install WordPress
WordPress Plugins
View all Guides


  1. Johnathan says:

    A very recent problem with our website is causing me to uninstall / re- install WordPress.

    Multiple issues:
    We had I guess what you would call “link injection” – Links showing up for our webite in Google that redirected to porn, viagra and such. I found that the htaccess has a a couple additional lines in it that allowed for these redirections.

    I also found in “users” that there were hundreds of user acounts created.

    Dashboard showed there were over 7K log in attemps.

    I started off by trying to pick through everything and repair, but I am concerned that I wouldn’t find all the problems and this would just happen again.

    I know the paid version of sucuri is recommended, but from the information I provided would you think the free versions will prevent these issues until I can justify the monthly cost to the owner of the company?

    • WPBeginner Support says:

      The free version can check your website for infections or malware. But for removal and other features you will need the paid version.

  2. madan says:

    Will this affect in search engines bot accessing website

  3. Martin Fuller says:

    I am at a loss to understand why the makers of WordPress itself do not address this problem of protection and security

  4. Mary says:

    Sucuri is awesome, They have helped me with my site. I’ve looked into other malware removal services and it’s expensive. For $199 a year, you get awesome support, an awesome firewall, awesome advice, and they will even remove the malware for you. If your site gets some good traffic, it’s important to secure your site.

  5. simpson says:

    can i use together free cloudflare service and sucuri?

  6. David says:

    First and obvious question — how does Sucuri compare to CloudFlare? CloudFlare’s basic plan is free, and does lots of the same things. Why should one switch to Sucuri at $200 a year from CloudFlare (free or $20 a month?)

    • Editorial Staff says:

      You don’t get the web application firewall on Cloudflare free plan. Your site also don’t get much optimization on the free plan.

      On their $20 / month plan, you do get WAF but that comes out to $240 / year. You also don’t get Advanced DDoS protection for which Cloudflare charges $200 / month (so $2400 / year).

      On the other hand Sucuri gives you WAF + Advanced DDoS protection for $199 / year. And if you want DDoS protection on Layer, 3, 4, & 7 — that’ll be $499 vs CloudFlare’s $2400.

      Aside from price comaprison, Cloudflare doesn’t offer malware cleanup guarantee that Sucuri includes as part of their service.

    • Ashu Xlon says:

      Actually Cloudfare do not totally protect you in their free basic version.They consider all the sites same that’s why there is no specialized security for wordpress whereas wordpress has its own security issues and needed to patched separately.

  7. Abhay says:

    Thank for this article. This is much needed. Sucuri is also of great help in identifying the malware in the site and it’s root. One observation I have on Sucuri, even when there is a malware in the website (because of which the hosting service provider first blocks port 80 and then the website), Sucuri does not show any malware / risk in the website. That’s suprising.

    • Editorial Staff says:

      If you’re using their free scanner tool on the website, then yes that won’t detect all malware specially the ones that are hidden inside your server.

      However the server side scan will detect those.

Add a Comment

We're glad you have chosen to leave a comment. Please keep in mind that all comments are moderated according to our comment policy, and all links are nofollow. Do NOT use keywords in the name field. Let's have a personal and meaningful conversation.