Hi.

I had some websites on wordpress. I had a malware issue, so downloaded a copy to my local computer and scanned the files.

Avast identified 71 problem files out of 20,000 files or so, and moved them to the vault.

OK. That’s fine.

But what I really want to do is to know which files - in their original locations - were infected, and fix them. In this case they are all Wordpress PHP files.

How do I get the vault to spit out a list of the original file locations? Or, if I put them back to the original locations, how do I flag that those are the infected ones?

Is your infected website still up?

If so, try scan it with Sucuri >> https://sitecheck.sucuri.net/ paste in URL and click scan

Thanks.

Yep, I had seen that was an option, but this one is on a low budget and sucuri costs more than the annual hosting.

My website hosting is around $200 per year, but Sucuri costs $200 per year for its base level package … PER SITE. So multiply that by say 5 sites and it is not a cost-viable solution.

Are there any other options?

It doesn’t cost anything to run a scan (the link given by Pondus) and have it show any weaknesses and resolve those yourself.

The same goes for using https://webhint.io/scanner/ to check and advise on areas of concern.

Yep, I had seen that was an option, but this one is on a low budget and sucuri costs more than the annual hosting.

A scan is FREE and Sucuri will list all places where infection is found (if detected) You can click on details and see the exact malicious code

Hi,

I am not really asking about the Sucuri solution.

I am trying to address the problems with the Avast solution.

The Avast interface quarantines the files, but I can’t either read the file locations (the main content is hidden to the right of the screen area and I can’t see it, the UI just displays the info about the root folder), and I can’t export a list of these file locations either.

As a result, I can’t find which files to restore to, for example, fix the malware problems on the server.

This would be a simple thing for the designers to fix, which they probably really should have done 10 years ago or when the software was built.

For me though, it means the vault is essentially useless as a UI, and therefore I uninstalled it.

If avast developers monitor this site, I’d suggest to them they might like to consider these commonsense features they could have added years ago.

If you ran on of the on-demand avast scans (which scan ?) then you should be able to look up the Scan History.

That said, I don’t know if it gives details on every detection, file name and location or just the numbers as none of the occasions I have run an on-demand scan has had any detections.

EDIT: Also are these files still in the virus chest, as that should give the file names ?