Quttera ThreatSign – Web Malware Scanner for WordPress

FAQ

How is this plugin different from similar plugins?

This plugin uses Quttera’s unique, patented malware scanning and detection technology. Its multi-layered heuristic engine gathers intelligence from the analyzed system and digests it into weighted rules to detect malicious code. A self-learning mechanism updates the ruleset using Quttera’s worldwide threat intelligence network.

What does the plugin detect?

The scanner identifies a wide range of threats, including:

• Obfuscated JavaScript
• Injected or malicious PHP code
• Hidden iframes, redirects, and links
• Spam and SEO malware
• Card skimmers targeting WooCommerce checkout pages
• Suspicious external links
• Backdoors and PHP shells
• Infected or modified WordPress core files

Heuristic and AI-powered analysis enables detection of new or unknown malware, not just known signatures.

What do I get for free with the plugin?

The free version includes:

• On-demand scans from the WordPress admin
• Blacklist checks across 40+ services
• Malware detection (JS, PHP, backdoors, spam, iframes, skimmers, etc.)
• Investigation report with severity levels:
  • Clean
  • Potentially Suspicious
  • Suspicious
  • Malicious

To enhance protection, upgrade to ThreatSign Website Security.

What is the heuristic scan?

Traditional scanning uses signature matching. Heuristic scanning uses rules, weight-based systems, emulators, flow analyzers, and statistical methods to detect potentially malicious functionality, even in previously unknown threats.

What to do if plugin detects something suspicious?

Quttera’s severity levels indicate potential risk. If you’re unsure whether a detection is harmful, our team can help. Contact us via ticket at https://helpdesk.quttera.com, email [email protected], or the plugin’s WordPress Support Forum.

Do you offer paid services?

Yes. Our ThreatSign Website Security plans provide:

• Expert malware cleanup
• Automatic malware removal
• Continuous & scheduled scans
• Web Application Firewall (WAF)
• DDoS protection & mitigation
• Blacklist removal (40+ authorities)
• 24/7 monitoring & protection

Learn more: https://quttera.com

Why does the screen freeze or go blank during scan?

This usually happens if your hosting assigns only one PHP worker. The scan process occupies the only worker, temporarily blocking the site until the scan completes.

Why when I click Scan Now nothing happens?

Ensure JavaScript is enabled and your firewall isn’t blocking plugin requests. The plugin communicates with the backend via JavaScript-generated HTTP requests.

How can I send you the investigation report?

Use the “Download Report” button, save the file, and send it to us via https://helpdesk.quttera.com/open.php.

Why does the internal scan show 0 scanned files?

Your hosting may not allow WordPress Cron to function properly.
You can enable an alternative cron method by adding this line to wp-config.php:

define(‘ALTERNATE_WP_CRON’, true);

How to submit undetected samples?

Submit them via: https://helpdesk.quttera.com/open.php

Questions about investigation process

For questions about investigation process please refer to http://quttera.com or post in the Support section here.