First.... I am a newbie at this. My site was hacked into and my host shut it down and pulled what they thought were the offending lines. I added several security plug-ins.
On one, Secure WordPress by WebsiteDefender, I ran the defender scan and it came up with two potential files with a problem.
One is a file call tols.php. Its full of what I think is base64 code. Here is a sample of a few lines worth [ moderated - Do not post malware code here. Use pastebin.com if you must. ]
It also identified one other php file. It was some php code followed by a bunch of base64. See below:
[ moderated - Do not post malware code here. Use pastebin.com if you must. ]
So.... Is this malware? Can I just delete the php file??