Hmm, yes, I understand that it won’t be 100% accurate, but after cleaning the site, I am surprised it wasn’t detected by the built in scanner. Over 400 malware html and php files create, all of the javascript files infected, and dozens of core wordpress PHP files were infected with obvious “exec(base64…decode…encode…[xj0]..char[32]…” kind of stuff at the bottom of all the files. Turns out to be a malware several years old.
I would have thought the scanner should catch something so obvious.
Has this been patched? I downloaded sucuri yesterday and even though every single .js file on my site is obviously infected, Sucuri scan says everything is A-OK.
Sitecheck says it is infected.