Instaling rrom backup

Thanks for this Mobilunity.

I have started reading through the links you posted.

I see that a first step is to back up my site. I ave downloaded and installed the backup Guard plug in but when I attempt to run a manual backup I am getting the error message “the pahe at https://www.andrewstucken.com says “false”.

I have coincidentally just noticed a menu at the top of the page in my WP dashboard called “UpdatePlus” which contains two backups form lat year, just after I completed my site (which I have barely alterd since, otyher than updates) and which I am pretty sure are clean.

So there could be a simple solution.

However I do want to use a backup plug in first, even if the current files are infected, in case I somehow lose my work.

Or am I worrying needlessly and should I go ahead and restore from the Update Plus Backups?

Androidandreas, I am glad my answer helped you to find the existing solution.
Backuping your files is a needed step, even though they are infected. In this way, you wouldn`t loose your data.

If you are having trouble making backup with your plugin, try another:
https://www.wpbeginner.com/plugins/7-best-wordpress-backup-plugins-compared-pros-and-cons/

Or maybe, there is even better solution. Try to do it through cpanel.

Thanks again. I’m making good progress here.

I have downloaded a plugin from the list in the link you posted and have successfully backed up the database.

I have also used FTP to download all my files and database to my local hard drive.

I then realised I have what i am pretty sure is a clean copy of my data which I had made using the UPdate Plus olugin.

I have now restored form that and applied all updates.

Now I would like to use a plugin to scan my site for malware.

Sucuri showed it as clean before the retsore but my host;s scan log, posted above,clearly showed many infections.

What’s the best malware scanner plugin for WordPress?

Update: I have run all the scans in the above list and all seems to be clean.

Can I now be confident that it really is malware free?

I installed what I though was a clean copy but my host says trhsere are still 50 infected files.

I have read the Wordfence guide above, made the backups and am now ready to delete files.

Is it sufficient to use my host’s File Manager and delete all 50 files individually, or do I need to delete whole directories? [ For example in the file list below, do I just need to delete “wp-content/updraft/plugins-old/tinymce-spellcheck/meta.php” or the whole tinymce-spellcheck sub-directory, or even go back further still and delete the whole /plugins-old sub-directory?

On the flip side, do I risk damaging my site by deleting any of the files?

Log file:

wp-content/updraft/plugins-old/advanced-settings/general.php
/wp-content/updraft/plugins-old/tinymce-spellcheck/meta.php
/wp-content/updraft/plugins-old/db-backup/general.php
/wp-content/updraft/themes-old/mobile_pack_base/functions.php
/wp-content/updraft/themes-old/mobile_pack_base/sidebar-archive.php
/wp-content/updraft/themes-old/smallbiz/functions.php
/wp-content/updraft/themes-old/smallbiz/entry-nav.php
/wp-content/updraft/themes-old/smallbiz/widgets/picture-widget/tpl/form.html_old.php
/wp-content/updraft/themes-old/smallbiz/widgets/custom-html-widget/css/tinymce_new.php
/wp-content/updraft/themes-old/smallbiz/widgets/nivo-slider/nivo-slider/themes/6e93e8d3_old.php
/wp-content/updraft/themes-old/smallbiz/layouts/mobile/frontpage_ver1.php
/wp-content/updraft/themes-old/BlueBubble/includes/help/portfolio/Armar-Portafolio-ES_indesit.php
/wp-content/updraft/themes-old/BlueBubble/includes/help/en/__MACOSX/assets/images/._htmlstructure_noversion.php
/wp-content/updraft/themes-old/BlueBubble/content-meta.php
/wp-content/updraft/themes-old/BlueBubble/functions.php
/wp-content/updraft/themes-old/twentyfourteen/functions.php
/wp-content/updraft/themes-old/twentyfourteen/content-nav.php
/wp-content/updraft/themes-old/mobile_pack_red/functions.php
/wp-content/updraft/themes-old/mobile_pack_red/sidebar-meta.php
/wp-content/updraft/themes-old/mobile_pack_green/content-meta.php
/wp-content/updraft/themes-old/mobile_pack_green/functions.php
/wp-content/updraft/themes-old/mobile_pack_blue/entry-meta.php
/wp-content/updraft/themes-old/mobile_pack_blue/functions.php
/wp-content/updraft/themes-old/expound/content-nav.php
/wp-content/updraft/themes-old/expound/functions.php
/wp-content/updraft/themes-old/expound/fonts/license_indesit.php
/wp-admin/ms-locale.php
/wp-admin/css/colors/_mixins_bck_old.php
/wp-admin/css/colors/blue/colors_indesit.php
/wp-admin/css/colors/midnight/colors-rtl.min_prevv1.php
/wp-admin/css/colors/coffee/colors-rtl_backup.php
/wp-admin/css/colors/light/colors-rtl_infoold.php
/wp-admin/css/colors/sunrise/colors.min_prevv1.php
/wp-admin/includes/class-wp-theme-install-list-table_prevv1.php
/wp-admin/includes/class-wp-meta.php
/wp-admin/js/edit-comments_old.php
/wp-admin/user-edit_infoold.php
/wp-admin/images/media-button-image_indesit.php
/wp-includes/theme-compat/rss-meta.php
/wp-includes/fonts/dashicons_old.php
/wp-includes/js/tinymce/themes/bcb545c0_new.php
/wp-includes/js/tinymce/plugins/fullscreen/plugin_infoold.php
/wp-includes/js/tinymce/plugins/compat3x/plugin.min_backup.php
/wp-includes/js/tinymce/plugins/wpdialogs/plugin.min_bck_old.php
/wp-includes/js/tinymce/plugins/paste/plugin_old.php
/wp-includes/js/tinymce/plugins/colorpicker/plugin.min_bck_old.php
/wp-includes/js/mediaelement/wp-mediaelement_prevv1.php
/wp-includes/post-meta.php
/wp-includes/SimplePie/Cache/DB_old.php
/wp-includes/SimplePie/HTTP/Parser_indesit.php

As far as I see, some of your folder and files are named “…-old” so the question arises. Are they still in use?

Good question…to which I do not know the answer!