Will the antivirus program remove malicious code from Wordpress wp-content/…./index.php files? I have identified the specific problem files. The Wordpress support guides are not clear about how to actually disinfect specific files. I have no backups for these files.
I dont think so, to my knowledge you have to remove the malicious code
Hi rdumain,
-
A proposed way to do it: https://wpfixit.com/remove-a-wordpress-infection/
(this is a commercial cleansing site, watch out for that pop-up) -
Another way to improve your WordPress CMS security is scanning here: https://hackertarget.com/wordpress-security-scan/
(also adjust the right settings, where “user enumeration” and “directory listing” is involved - should both be disabled),
also check the security of external links. -
Check used jQuery libraries to be retired here: https://retire.insecurity.today/#
-
Also remove all outdated or even worse, left code from your webpage. Continuously update and patch.
-
Moreover check here for php related vulnerabilities: http://www.domxssscanner.com/scan
-
Scan other aspects here: https://observatory.mozilla.org/
-
Finally give this scan a run: https://aw-snap.info/file-viewer/
polonus (volunteer website security analyst and website error-hunter)