As we all know "Wordfence" found that these websites which were using "WP file manger" get their sites hacks.
After this news, I uninstall wp file manager from my site & start scanning my site with wordfence and at the end of scanning, I found 3 files are not scanned, but wordfence notified me that "This files might be possible containing malware". I'm scared that my website will be hack. If that files really have malware, Then hackers can easily hack my website.
Plugins I'm using for security
Change wp-admin login
Really Simple SSL
UpdraftPlus - Backup/Restore
I'm using paid plugins and never used nulled themes or plugins.
Kindly suggest me guys How I can improve my website security, I don't want to lose my hard work which I'm doing from months.