How to export public_html and the WordPress database through cPanel
Step-by-step guidance to compress public_html and export the SQL database before sending material for malware analysis.
How to export public_html and the WordPress database through cPanel
Step-by-step guidance to compress public_html and export the SQL database before sending material for malware analysis.
The goal is to help site owners, agencies and companies identify WordPress infection signs, understand the risks and act safely before the problem grows.
What this problem means
The main scenario is the safe export of WordPress files and database from cPanel so a technical malware analysis can be performed. Even if the website appears to work, the issue may be hidden in files, plugins, themes, uploads, database entries or server rules.
Signs worth checking
- compress the public_html folder
- download the generated ZIP file
- identify the correct database in wp-config.php
- export SQL through phpMyAdmin
- avoid sending passwords through forms
- use an external link if the backup is too large
Why you should not clean only the visible symptom
Many attacks use persistence. Removing one visible line of code, clearing cache or disabling a plugin may hide the symptom temporarily, but it does not necessarily remove backdoors, fake users, remote scripts or malicious database entries.
What should be reviewed in WordPress
A safe review should include the public_html folder, plugins, themes, uploads, hidden files, .htaccess, administrator users, WordPress options, posts, metadata and SQL tables related to the website behavior.
How PREMA-IT helps
PREMA WordPress Security analyzes files and database content looking for malware, viruses, backdoors, redirects, obfuscated scripts, fake plugins and suspicious changes. In cleanup plans, the client receives cleaned material and a technical report.
If your WordPress shows infection signs, request analysis at prema-it.com.