Hi, I think your site has been hacked.
Please try the following steps.
Even though a lot of effort has gone into developing this plugin to protect your site, sites might still get hacked. In that case the following URLs will help you. These are instructions provided by WordPress org support staff.
Step 1 – My Site was hacked
Step 2 – Hardening WordPress
Aside from the above two links you should also carry out the following to clean your site.
– Using cpanel file manager delete your wp-admin and wp-includes directories and then upload new versions from a fresh zip file of your WordPress core version.
– Delete all plugins and re-install fresh new versions. Also do not use old zip files you have on your computer or server. Always get new plugins directly from wordpress.org or from the developer who wrote them. (Same goes for your theme)
– Also go through your root directory and replace all wp core files with new versions and delete any unknown files. Check your wp-config.php file for any suspicious code.
– Go through all other wp directories such as uploads etc…and check to see if any suspicious php files are there. (eg, uploads directories should mostly have media files and not php files)
– Examine all of your server directories which reside outside of your WordPress installation and look for php files.
The above should help you get your site up and running and clean from any viruses.
Kind regards
Okay, we suspected the same too(hacked part).
Let us work on the points you mentioned.
