Hi guys,
I just migrated to a new host about suffering the ‘Baba Yaga’ malware attack.
I’m in the process of recreating each of the websites from scratch. I used the All in One WP Migration to export the posts only but was careful not to export themes, plugins, or even the WordPress essential files.
I just browsed through the /wp-content folder and found the following. There are a number of .txt files that look suspicious to me.
Could the malware have somehow injected into the new hots?
https://imgur.com/a/QJCpDmO