Whatever vulnerability must have been on the server to allowed this infection in the first place might still be present. You will need to find the security hole and patch it. If these sites are on a shared hosting platform they could easily be infecting each other.
You need to review the log files on your server which correspond to the activity at the exact time of the infections. You can get all the infection times from the Anti-malware Quarantine page in your wp-admin. The activity in your log files at those times should lean you to the vulnerability that needs to be patched.
I have added these new variants to my definition updates. Thanks for sending me the full code. Please download the latest definitions and let me know if you find any more 
It is not normal for a healthy site but it is a well know problem on infected site. It is not uncommon for certain infections to inject .htaccess files into every directory on your site, and those files should be cleaned using the automatic fix option on the scan results page in my plugin.
Sorry I missed this post, are you still having this issue?
The only clue I can see from your video is that there are a lot of Admin Notices warning about output buffer handlers. I would suggest that you start there because it cannot be good for your admin pages (especially my plugin’s scan page) to be running through a custom output buffer handler. If you deactivate all the plugins causing those warnings and the scan still does not start then you will need to look in your error_log file to see what is causing this (your video was not long enough to see if the page would eventually load with some error message).
Please let me know if you need any more help with this issue. Also note that a direct email to me will usually get you a faster response
This does not seem to be related to my plugin. I cannot recreate the issue. Can you confirm that the Author section of the Edit Post screen is there if your deactivate my plugin?
Most of them are probably skipped because they are binary files that do not contain code that could be executed on your server (like images and compressed files). Some may also be empty file and are skipped because they cannot contain malicious code if they contain no code at all
You should be able to click on the skipped files count and then hover over the files on that list to display the reason.
You can also change the comma separated list of file extensions that are skipped but that would only slow down the scan process with no better results.
In general I would say that this kind of issue is most commonly caused by some sort of Javascript error or CSP restrictions on your end. I can’t be certain without more information from you but you can check the Console in your browser to see what error is causing it to fail the reg-check.
Also, you you contact me directly via email then I can help you with any account specific questions, without posting personal details on the forum
For any account specific support you should email me directly so that I can reply privately with your private information.
I have sent a direct email to you with the receipt URL for this donation.
I don’t speak spanish well but I will try to help you find the answers you are looking for.
My plugin does not block specific IP addresses. The various firewall feature only block malicious activity on a case-by-case basis.
What server or service is being blocked and what makes you think it is my plugin that is blocking it?
No hablo bien español, pero intentaré ayudarte a encontrar las respuestas que estás buscando.
Mi complemento no bloquea direcciones IP específicas. Las diversas funciones del firewall solo bloquean la actividad maliciosa caso por caso.
¿Qué servidor o servicio está bloqueado y qué te hace pensar que es mi complemento el que lo está bloqueando?
I have released a new plugin update which should resolve this issue for you. Please download the new plugin version 4.20.92 and let me know if you are still having any issue with this.
It might be cache that is showing you that updates need to be downloaded. if you see that again try just refreshing the page to see if the it shows that the new updates were actually installed.
If it is still not showing that the updates are current then send me a screenshot of that page with your key visible so that I can see what else might be going wrong.
Do you know what version of Apache is running on your server?
What does it say on the right-hand side of the Anti-Malware Settings page in your wp-admin between the PHP version and the WordPress version?
Thanks for posting this screenshot so that I can see where is getting stuck. It appears that the scan process is either running out of memory or else hitting some sort of initial process limit during the preparation phase, before the the scan jobs can even get started. You could check the error_log files on your server to see which might be the case. You should be able to increase the offending limits in your php.ini file on the server but you would need to consult with your hosting provider if you need help with that.
As a temporary workaround you might be able to omit the thumbnails directory (featured in your screenshot) from the scan in order to continue on, and this might cause the scan to run more efficiently as is likely that there are many thousands of images in that thumbnails directory that do not need to be scanned anyway. Try adding the word thumbnails to the list of directories to be skipped and see what happens.
Sorry for the late reply, I didn’t get the notification that you had posted a new topic.
That error means that your site is already registered. If you don’t see that your site is registered in your wp-admin and it is asking you to register again then you probably have something on your end that is caching that response. Try clearing your cache and refreshing your browser and if that doesn’t do it then check that there are no caching plugins enabled that might be caching the registration checking script on your wp-admin page.
As I had stated when I replied to your email about this, you only need to request that they whitelist your own IP address as you will be the one initiating the scans using my plugin on your site. So there will be no outside IP addresses but your own that will need access to the site in order for you to run the Complete Scan using my plugin.
