My sites all got infected with a Base64 bot script in the last 2 weeks, and I have been unable to completely remove it.
I decided that the best plan is to make clean installs of each site on a new host, with added security, but I want to retain the posts, as there is 3 years of articles which I do not want to lose.
I have scanned the posts for "iframe", "<noscript" and "display:" using SQL and can only find what looks like valid Amazon ads in some posts.
My questions are:
1. Is there a checklist of things to look for in a WP database to make sure it's not infected?
2. I have backup copies of posts in there. Is there a way to only keep the latest published version?
3. Am I likely to experience problems using the old database with the new site? Will the links automatically regenerate (user posts, comments etc)?
Thanks in advance.
I haven't had to transport a WordPress site across before, and I really want to be sure I leave this infction behind.