Trojan not identify by this plugin

  • Resolved xoxgregxox

    (@xoxgregxox)


    1 year, 4 months ago

    For a few weeks now, some customers have been receiving an antivirus message indicating that the website is infected with the Spy.Banker.LQ trojan. Initially, I didn’t encounter this issue, but now I’m experiencing the same problem. The alarm is triggered specifically at the checkout, and for those with antivirus software, it completely blocks access to this page. I installed the Wordfence plugin to see if it could pinpoint the problem, but it didn’t find anything. Do you know why this could be happening?

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)

  • Hey @xoxgregxox,

    There are a multitude of methods for identifying and removing Spy.Banker.

    Click here and select the case that best matches yours for a solution.

    This article might help you as well.

    I would also scan the devices (e.g., laptops) you’re using to manage your website for the presence and removal of keyloggers and other malware. Malwarebytes is pretty good at that.

    Most likely, your best bet will be to scan and clean up your devices followed by restoring your website from a healthy back-up. Make sure you’re using the latest version of WordPress and installed plugins. Do not use nulled plugins.

    And for everyone’s learning, it would be awesome if you can share the final solution that worked for you.

    Best wishes.

    Plugin Support wfphil

    (@wfphil)

    Hi @xoxgregxox

    There is always the possibility that the anti-malware software vendors are reporting a false positive and you can contact them to do a review of your site and give you a report if they find something that they class as being malicious.

    Please follow our site cleaning guide below:

    https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/

    If you discover any malicious code in any files then you can send the files safely to us at our email address samples [at] wordfence [dot] com.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Trojan not identify by this plugin’ is closed to new replies.

Tags