Malware detected on the last version

  • Resolved djstevencr

    (@djstevencr)


    5 years, 8 months ago

    Hi I am having problems to use adwords since they say my website has malware content.
    I installed Quttera Malware Scanner and this is what was found.

    Severity: enMaliciousThreatType
    File: wp-content/plugins/wp-live-cha/…/wp-live-chat-support.php
    File signature: 20a6db090258613b259540bfdd4e6b29
    Threat signature: 86e0f798117fe101c2b13047235a009d
    Threat name: Trojan.PHP.Base64.gen.9c
    Threat: <?php /* Plugin
    Details: Detected malicious PHP script

    Severity: enMaliciousThreatType
    File: wp-content/plugins/wp-live-cha/…/wp-live-chat-support.php
    File signature: 20a6db090258613b259540bfdd4e6b29
    Threat signature: ca1910ef619cb65c6f0bbd508a2b1139
    Threat name: Heur.PHP.Dropper.gen
    Threat: <?php /* Plugin
    Details: Generic malware dropper

    What is the problem?

Viewing 3 replies - 1 through 3 (of 3 total)

  • @djstevencr You were hacked and your website is infected with malware, which likely originated from the WP Live Chat Support vulnerabilities that have been getting exploited. You would need to remove the malware and secure your website before Google Adwords will accept you. If you are unsure of how to perform this cleaning on your own then there are paid services like Sucuri, Quttera, Wordfence, etc and they can do this for you.

    Hi there,

    Thank you for getting in touch, we do appreciate your time.

    Please reach out to us directly regarding this issue: https://wp-livechat.com/contact-us/

    We will do our best to assist you in identifying the root issues where possible.

    This topic is being closed, we have requested direct communication to assist further.

    As I posted before, you must never ever install any plugin on your production site without first testing it “offline on a local server” — without connection to internet. So this way you can block and trap any vulnerabilities, look all over plugin and strip out any suspect code, and plug vulnerabilities. It shame many people just install plugins on their live sites without doing forensic look at the code. Huge mistake in this age of malware and exploits. Take your security in your own hands and trust no plugin.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Malware detected on the last version’ is closed to new replies.

Tags