Infection removal from Wordpress files?

Will the antivirus program remove malicious code from Wordpress wp-content/…./index.php files? I have identified the specific problem files. The Wordpress support guides are not clear about how to actually disinfect specific files. I have no backups for these files.

I dont think so, to my knowledge you have to remove the malicious code

Hi rdumain,

  1. A proposed way to do it: https://wpfixit.com/remove-a-wordpress-infection/
    (this is a commercial cleansing site, watch out for that pop-up)

  2. Another way to improve your WordPress CMS security is scanning here: https://hackertarget.com/wordpress-security-scan/
    (also adjust the right settings, where “user enumeration” and “directory listing” is involved - should both be disabled),
    also check the security of external links.

  3. Check used jQuery libraries to be retired here: https://retire.insecurity.today/#

  4. Also remove all outdated or even worse, left code from your webpage. Continuously update and patch.

  5. Moreover check here for php related vulnerabilities: http://www.domxssscanner.com/scan

  6. Scan other aspects here: https://observatory.mozilla.org/

  7. Finally give this scan a run: https://aw-snap.info/file-viewer/

polonus (volunteer website security analyst and website error-hunter)