Need some help to say the least...
My WP site has been hacked and keeps inserting hidden links after the body tag in the wp-blog-header.php. Google is threatening to take the site out of their index due to breaking their Webmaster rules.
Here is what the host provides for me to look at, but they are not offering any help with what I should do about it.
public_html/wp-content/cache.php: HG-MYSQL.rst.void.ru.MySQL.shell.Fragment.AA.UNOFFICIAL FOUND
/home/bizem09/public_html/wp-xmlrpc.php: HG-MYSQL.rst.void.ru.MySQL.shell.Fragment.AA.UNOFFICIAL FOUND
There is no cache.php in the wp-content folder and there is no wp-xmlrpc.php /anywhere/ on the server let alone where they claim past backups point to as noted above.
I keep modifying the wp-blog-header.php and the junk links keep coming back. My passwords have been changed on a regular basis, my permissions are correct (644) and I am at a loss as to where to look or what to do to remedy this.
Has anyone run into this -- can you point me in the right direction? The gods at Google are giving me time to resolve this and the site in question has #1 rankings that I would really like to avoid not loosing.
TIA for any support or advise you can offer!