{"id":273886,"date":"2026-01-29T17:56:28","date_gmt":"2026-01-29T17:56:28","guid":{"rendered":"https:\/\/wordpress.org\/plugins\/security-watchdog-lite\/"},"modified":"2026-05-20T18:58:01","modified_gmt":"2026-05-20T18:58:01","slug":"lumiverse-security-watchdog-lite","status":"publish","type":"plugin","link":"https:\/\/ru.wordpress.org\/plugins\/lumiverse-security-watchdog-lite\/","author":13133672,"comment_status":"closed","ping_status":"closed","template":"","meta":{"version":"3.0.4","stable_tag":"3.0.4","tested":"6.9.4","requires":"6.0","requires_php":"7.4","requires_plugins":null,"header_name":"Lumiverse Security Watchdog Lite","header_author":"Lumiverse Dynamic","header_description":"Modular background scanner: tracks new plugins, new admin users and scans changed .js files for malware signatures. Sends email alerts. Options to harden your installation.","assets_banners_color":"47628e","last_updated":"2026-05-20 18:58:01","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"https:\/\/lumiverse.gr\/","header_author_uri":"","rating":0,"author_block_rating":0,"active_installs":30,"downloads":432,"num_ratings":0,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"1.1.3":{"tag":"1.1.3","author":"bestseogr","date":"2026-01-29 17:58:48"},"3.0.0":{"tag":"3.0.0","author":"bestseogr","date":"2026-04-24 11:14:46"},"3.0.1":{"tag":"3.0.1","author":"bestseogr","date":"2026-04-24 17:24:43"},"3.0.3":{"tag":"3.0.3","author":"bestseogr","date":"2026-04-24 19:12:11"},"3.0.4":{"tag":"3.0.4","author":"bestseogr","date":"2026-05-20 18:58:01"}},"upgrade_notice":[],"ratings":[],"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3514546,"resolution":"128x128","location":"assets","locale":"","width":250,"height":250}},"assets_banners":{"banner-772x250.png":{"filename":"banner-772x250.png","revision":3514538,"resolution":"772x250","location":"assets","locale":"","width":2149,"height":732}},"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.1.3","3.0.0","3.0.1","3.0.3","3.0.4"],"block_files":[],"assets_screenshots":{"screenshot-1.png":{"filename":"screenshot-1.png","revision":3514540,"resolution":"1","location":"assets","locale":"","width":1477,"height":546},"screenshot-2.png":{"filename":"screenshot-2.png","revision":3514541,"resolution":"2","location":"assets","locale":"","width":733,"height":744},"screenshot-3.png":{"filename":"screenshot-3.png","revision":3514542,"resolution":"3","location":"assets","locale":"","width":604,"height":585},"screenshot-4.png":{"filename":"screenshot-4.png","revision":3514537,"resolution":"4","location":"assets","locale":"","width":812,"height":727}},"screenshots":{"1":"Dashboard with health status and overview","2":"Scanning settings","3":"Hardening options","4":"Alerts and logs"}},"plugin_section":[],"plugin_tags":[1184,5603,6464,600,1173],"plugin_category":[54],"plugin_contributors":[84570],"plugin_business_model":[],"class_list":["post-273886","plugin","type-plugin","status-publish","hentry","plugin_tags-malware","plugin_tags-monitoring","plugin_tags-scanner","plugin_tags-security","plugin_tags-wordpress-security","plugin_category-security-and-spam-protection","plugin_contributors-bestseogr","plugin_committers-bestseogr"],"banners":{"banner":"https:\/\/ps.w.org\/lumiverse-security-watchdog-lite\/assets\/banner-772x250.png?rev=3514538","banner_2x":false,"banner_rtl":false,"banner_2x_rtl":false},"icons":{"svg":false,"icon":"https:\/\/ps.w.org\/lumiverse-security-watchdog-lite\/assets\/icon-128x128.png?rev=3514546","icon_2x":false,"generated":false},"screenshots":[{"src":"https:\/\/ps.w.org\/lumiverse-security-watchdog-lite\/assets\/screenshot-1.png?rev=3514540","caption":"Dashboard with health status and overview"},{"src":"https:\/\/ps.w.org\/lumiverse-security-watchdog-lite\/assets\/screenshot-2.png?rev=3514541","caption":"Scanning settings"},{"src":"https:\/\/ps.w.org\/lumiverse-security-watchdog-lite\/assets\/screenshot-3.png?rev=3514542","caption":"Hardening options"},{"src":"https:\/\/ps.w.org\/lumiverse-security-watchdog-lite\/assets\/screenshot-4.png?rev=3514537","caption":"Alerts and logs"}],"raw_content":"<!--section=description-->\n<h4>Lumiverse Security Watchdog Lite<\/h4>\n\n<p>Lumiverse Security Watchdog Lite is a lightweight yet powerful WordPress security plugin designed to detect early signs of compromise and reduce common attack surfaces.\nIt runs automated background scans and alerts you when something suspicious is detected.<\/p>\n\n\n\n<h4>What it monitors<\/h4>\n\n<p>\u2714 <strong>Malware signatures (JS &amp; PHP)<\/strong>\nScans files for known malware patterns including injectors, obfuscated scripts, and common webshell families.<\/p>\n\n<p>\u2714 <strong>Changed JavaScript files<\/strong>\nDetects modified <code>.js<\/code> files and analyzes them for suspicious behavior.<\/p>\n\n<p>\u2714 <strong>Plugins (new, deleted, suspicious)<\/strong>\n- Detects newly installed or removed plugins<br \/>\n- Flags suspicious plugin names (e.g. random\/hash-based folders)<br \/>\n- Detects known fake plugin families (WP Default, Cache Engine, Slick Popup, etc.)<\/p>\n\n<p>\u2714 <strong>Core integrity checks<\/strong>\n- Flags important WordPress core files modified recently<br \/>\n- Scans recent core PHP files for suspicious patterns<\/p>\n\n<p>\u2714 <strong>Uploads directory scanning<\/strong>\n- Detects PHP files inside uploads (common malware location)<br \/>\n- Detects executable files (php, phtml, phar, etc.)<\/p>\n\n<p>\u2714 <strong>Admin user monitoring<\/strong>\n- Detects new admin accounts<br \/>\n- Flags suspicious admin usernames or invalid emails<\/p>\n\n<p>\u2714 <strong>Database backdoor indicators<\/strong>\n- Detects suspicious <code>_pre_user_id<\/code> entries used by hidden admin exploits<\/p>\n\n\n\n<h4>Security Hardening Features<\/h4>\n\n<p>Reduce attack surface with one-click protections:<\/p>\n\n<p>\u2714 Block XML-RPC<br \/>\n\u2714 Disable application passwords<br \/>\n\u2714 Disable file editing (wp-admin editor)<br \/>\n\u2714 Disable plugin\/theme installation &amp; updates (optional)<br \/>\n\u2714 Disable plugin\/theme deletion<br \/>\n\u2714 Hide login error messages<br \/>\n\u2714 Limit login attempts (basic brute-force protection)<br \/>\n\u2714 Block pingbacks<br \/>\n\u2714 Block user enumeration<br \/>\n\u2714 Block comments sitewide<br \/>\n\u2714 Block password reset for administrators<\/p>\n\n\n\n<h4>Alerts &amp; Monitoring<\/h4>\n\n<p>\u2714 Email notifications when threats are detected<br \/>\n\u2714 Alerts if \u201cAnyone can register\u201d is enabled<br \/>\n\u2714 Optional auto-fix to disable user registration<br \/>\n\u2714 Admin hygiene warnings (e.g. weak usernames)<\/p>\n\n\n\n<h4>Performance Focused<\/h4>\n\n<p>\u2714 Fast Mode: scan only recently modified files<br \/>\n\u2714 Lightweight: no heavy server load<br \/>\n\u2714 Designed to work alongside plugins like Wordfence<\/p>\n\n\n\n<h4>Important<\/h4>\n\n<p>This plugin does <strong>NOT automatically clean malware<\/strong>.<\/p>\n\n<p>It is a <strong>detection and monitoring tool<\/strong> that helps you:\n- detect compromises early<br \/>\n- understand what changed<br \/>\n- take action before damage spreads<\/p>\n\n<!--section=installation-->\n<ol>\n<li>Go to your WordPress Dashboard \u2192 Plugins \u2192 Add New  <\/li>\n<li>Search for: Lumiverse Security Watchdog Lite  <\/li>\n<li>Install and Activate  <\/li>\n<li>Go to \u201cSecurity Watchdog\u201d in the admin menu  <\/li>\n<li>Enable scanning and configure your settings  <\/li>\n<\/ol>\n\n<p>Or manually:<\/p>\n\n<ol>\n<li>Upload the plugin folder to <code>\/wp-content\/plugins\/<\/code>  <\/li>\n<li>Activate the plugin  <\/li>\n<li>Go to \u201cSecurity Watchdog\u201d and configure  <\/li>\n<\/ol>\n\n<!--section=faq-->\n<dl>\n<dt id=\"does%20this%20plugin%20remove%20malware%3F\"><h3>Does this plugin remove malware?<\/h3><\/dt>\n<dd><p>No. It detects suspicious activity and helps you respond quickly.<\/p><\/dd>\n<dt id=\"how%20often%20does%20the%20scan%20run%3F\"><h3>How often does the scan run?<\/h3><\/dt>\n<dd><p>Every 24 hours via WP-Cron (can be changed in settings).<\/p><\/dd>\n<dt id=\"will%20it%20send%20emails%20on%20every%20scan%3F\"><h3>Will it send emails on every scan?<\/h3><\/dt>\n<dd><p>No. Only when suspicious findings are detected.<\/p><\/dd>\n<dt id=\"can%20i%20use%20this%20with%20wordfence%20or%20other%20security%20plugins%3F\"><h3>Can I use this with Wordfence or other security plugins?<\/h3><\/dt>\n<dd><p>Yes. It is designed to complement other tools.<\/p><\/dd>\n<dt id=\"will%20it%20slow%20down%20my%20site%3F\"><h3>Will it slow down my site?<\/h3><\/dt>\n<dd><p>No. It is lightweight and optimized. Fast mode is available for large sites.<\/p><\/dd>\n<dt id=\"what%20does%20%E2%80%9Cblock%20admin%20password%20reset%E2%80%9D%20do%3F\"><h3>What does \u201cBlock admin password reset\u201d do?<\/h3><\/dt>\n<dd><p>It prevents attackers from resetting administrator passwords through the default WordPress flow.<\/p>\n\n<\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h4>3.0.4<\/h4>\n\n<ul>\n<li>IMPROVED: Signatures Engine<\/li>\n<\/ul>\n\n<h4>3.0.3<\/h4>\n\n<ul>\n<li>IMPROVED: Signatures Engine<\/li>\n<li>FIX: The plugin was reported as malware (false possitive)<\/li>\n<\/ul>\n\n<h4>3.0.1<\/h4>\n\n<ul>\n<li>FIX: False Positives<\/li>\n<\/ul>\n\n<h4>3.0.0<\/h4>\n\n<p>Major update:\n- Added PHP malware scanning (plugins, themes, uploads)\n- Added suspicious plugin detection (including random names)\n- Added uploads executable detection\n- Added core integrity checks\n- Added admin hygiene and security alerts\n- Added advanced hardening options\n- Improved scanning performance (Fast Mode)\n- Improved UI with new dashboard layout<\/p>\n\n<h4>1.1.4<\/h4>\n\n<p>New patterns<br \/>\nImproved engine<\/p>\n\n<h4>1.1.2<\/h4>\n\n<p>Initial WordPress.org release<\/p>","raw_excerpt":"Lightweight WordPress security scanner and hardening tool. Detects malware, suspicious plugins, admin changes, and protects your site with built-in se &hellip;","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/273886","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=273886"}],"author":[{"embeddable":true,"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/bestseogr"}],"wp:attachment":[{"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=273886"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=273886"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=273886"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=273886"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=273886"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/ru.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=273886"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}