Get Off Those Maliciously Loaded Scripts!
Download this free Anti-Malware Plugin for WordPress.

This plugin performs an active scan from the Anti-Malware Setting page within your wp-admin. The Complete Scan progress is rendered on the page as the scan is running and it is necessary to stay on that page for the scan to finish. Results are displayed in real-time as the contents of the files and database are scanned and it usually takes less than 30 minutes to scan all the files in the scan path and the database too (which is done at the end of the file scan).

If you are experiencing anything different from what I have just described then would you please send me a screenshot of what you see so that I can help you troubleshoot the cause of the problem you are having?

That is an interesting way to configure the scan. I’m not sure I have ever tried it like that and I don’t think it will skip the file indexing even if you haven’t selected any file type threats to look for (something I will have to make accommodations for in my next release). Regardless, it should not be taking that long. I can see from that screenshot that it is currently in the “Re-Checking” phase, which only happens if there are read errors on your filesystem, and there must have been a lot of them for it to push out the scan time that far. Perhaps you might want to increase the memory_limit in the php.ini file on your server to speed up the scan and ensure that the larger files can be opened and read. You may also need to check the file permissions if some of those files eventually show up under the Read/Scan Error section of the results (I see there are two there already in that screenshot).

I would like to help you figure out why it is running so slow on your server and find a solution to this problem but it is hard to guess at the cause from just one screenshot.If my above guesses were no help and you need more help from me you can email me directly with more screenshots or even send me a login to your wp-admin if you are willing to trust me with admin access to your site (I won’t break anything, just want to test the scan in a few different ways to see why it’s acting slow).

There is one more thing you could try. It’s just a workaround for the DB Scan if that is all you want, but I would still like to speed up the file scan for you. Anyway if you just want to skip right to the DB scan you can try selecting only a single small plugin to scan by clicking on the word “plugins” under “What to scan:” and then selecting a small folder like “gotmls” (see screenshot below):

https://paste.pics/0eb3d7785e1def55e11bfe7fb0433417

Actually the memory_limit value in the php.ini does have a direct impact on all PHP processes running through your website. So, if it says memory_limit = 256M then every PHP processes (including my plugin’s scan jabs) will be limited to 256MB of memory, even if your server has 32GB of physical memory installed. Whereas, other server side applications like ImmunifyAV run as stand-alone processes with full access to all the servers CPUs and could use as much memory as the server has if they need to to get the job done. please understand that my plugin (like every other PHP process on your website) is limit to the resources that your server assigns to it, and it does the best it can within those limits.

All those errors are certainly a troubling sign to my eye and I would like to help you solve that because I suspect that you may actually have some infected file and the scan is definitely being impeded in some way. The first 3 error on that list have suspicious output about the __wakeup function in the Videoframes class that is coded incorrectly and could be caused by a malware injection (or it could just be a poorly written plugin that is causing errors on your site). You might get more information about the source of this error in the error_log files on your server.

The fact that there were no Database injection found should be a good thing but perhaps you have reasons to suspect that this is incorrect and are hoping to locate scripts in the Database that you are sure should be there. Can you tell me where you are seeing evidence of an infection on your site so that I can take a look?