Title: Malware Post.php Last modified: August 30, 2016 --- # Malware Post.php * [daveteu](https://wordpress.org/support/users/daveteu/) * (@daveteu) * [10 years, 5 months ago](https://wordpress.org/support/topic/malware-postphp/) * Prior to this my host was infected by same problem so I’ve moved to a new host and following steps done. * 1) New install of word press + plugins redownloaded + theme redownloaded from theme forest * 2) I went through every image folders in wp-content and i manage to find some strange ini.php and other php files which looks like malware (base64) which I have deleted * 3) installed word fence and theme security * 4) change all wordpress and cpanel password to ThemeSecurity recommend STRONG password * However suddenly there’s this file start appearing in all my wordpress installation root folder named post.php. the following are the contents and i do not know what are they but definitely looks malicious to me. * ``` $wq33=chr(112 " ``` * **[moderated – don’t post malware in these forums]** * I am about to give up now, it took me a long time to move all the files and website to new host.. can anyone share some light? I can’t find anything related to random post.php appearing in wordpress root folders. Viewing 4 replies - 1 through 4 (of 4 total) * [neotechnomad](https://wordpress.org/support/users/neotechnomad/) * (@neotechnomad) * [10 years, 5 months ago](https://wordpress.org/support/topic/malware-postphp/#post-6884692) * I strongly suggest contacting your host and inform them of this. There is probably malware still somewhere in your install. * Thread Starter [daveteu](https://wordpress.org/support/users/daveteu/) * (@daveteu) * [10 years, 5 months ago](https://wordpress.org/support/topic/malware-postphp/#post-6884693) * It’s a brand new install for all my sites. the only thing that remains old is the mysql files which… i don’t think there’s anyway to clean on my own. * If only i know what does those post.php do (permission 000 btw), i can better counter the problems. * [neotechnomad](https://wordpress.org/support/users/neotechnomad/) * (@neotechnomad) * [10 years, 5 months ago](https://wordpress.org/support/topic/malware-postphp/#post-6884699) * Again, I strongly suggest contacting your host and inform them of this. * > the only thing that remains old is the mysql files which… i don’t think there’s > anyway to clean on my own * You hosts techs should be able to take care of this if you explain what you did and that the MySQL files are from the previous infected site. * [Mark Ratledge](https://wordpress.org/support/users/songdogtech/) * (@songdogtech) * [10 years, 5 months ago](https://wordpress.org/support/topic/malware-postphp/#post-6884713) * [@daveteu](https://wordpress.org/support/users/daveteu/): you didn’t clean the database. * Carefully follow [https://codex.wordpress.org/FAQ_My_site_was_hacked](https://codex.wordpress.org/FAQ_My_site_was_hacked) * Then take a look at the recommended security measures in [Hardening WordPress – WordPress Codex](https://codex.wordpress.org/Hardening_WordPress) and [Brute Force Attacks – WordPress Codex](http://codex.wordpress.org/Brute_Force_Attacks) * If you can’t do the work yourself, consider looking for a reputable person on [http://jobs.wordpress.net/](http://jobs.wordpress.net/) or [http://directory.codepoet.com](http://directory.codepoet.com) or [http://upwork.com](http://upwork.com) * _ (FYI, it’s **not** a good idea to respond to work offers from random forum users who have read about your issues.)_ Viewing 4 replies - 1 through 4 (of 4 total) The topic ‘Malware Post.php’ is closed to new replies. ## Tags * [headache](https://wordpress.org/support/topic-tag/headache/) * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/) * 4 replies * 3 participants * Last reply from: [Mark Ratledge](https://wordpress.org/support/users/songdogtech/) * Last activity: [10 years, 5 months ago](https://wordpress.org/support/topic/malware-postphp/#post-6884713) * Status: not resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics