My WordPress website was hacked and I'm not sure what to do. It's weird because the hack doesn't show up in every browser. I actually have not been able to see it myself and other people have told me about it and sent me screenshots.
What happens is the text that appears in the browsers tab is actually an advertisement for pharmaceuticals and not my blog's name. I found some articles about a pharma hack and tried some of recommendations to fix it. One thing they said to do was search my debates for certain files and delete them. I did find one file called ftp_credentials, but it did not erase it. I wasn't sure I was supposed to. Any idea what it is or what it is called so I can start searching for a fix?