Siteground has taken my website down due to suspicious activity. The file log shows cls.php as the culprit. I suspect the site was hacked. I can’t even login to the WordPress dashboard. All plugins and caching have been disabled via Siteground dashboard.
Without nuking the whole site does anyone have any recommendations how to replace the suspect file?