Yes. As of plugin version 1.4.107, PowerSEC runs its full, deterministic malware scanner automatically in the background on a schedule - you do not have to press "Scan" for protection.
How it works
- The scheduled scan uses the exact same detection as the on-demand scan: known backdoor/webshell patterns, PHP-like files attackers hide code in (.php, .phtml, .pht, .phar, .inc), and static heuristics. It never executes the code it inspects.
- It runs in small, resumable slices across scheduled runs so it is safe even on very large sites - it never tries to scan everything at once.
- Your site's malware status is only updated to "clean" after a complete scan finishes. A partial scan never clears an existing detection.
- You can still run an on-demand scan anytime for an immediate result; the on-demand scan is the fastest path and takes priority over the background scan.
Which plans get it? Every plan - Free, Backup Only, and Pro - all get local scheduled malware scanning. Pro/Agency additionally get Central live signatures and AI-assisted triage on top.
Does it catch everything? No scanner can guarantee detection of every possible backdoor or zero-day. PowerSEC layers this autonomous scan with on-demand scanning, file-integrity monitoring, WordPress core integrity checks, and the firewall to catch common threats and surface suspicious changes for review.