azda

Hi Wslade

I chose the title because only the main page (index page) manifests this porn url when searched on google.
When you do a google search for the other pages, the url of those pages is not affected
Also, this problem is only specific to google. The other search engines do not manifest the porn url

I am working through this slowly as I have a fulltime job and part time student. Here is what we have done so far

1. changed admin password
2. Deleted all plugins and re-installed
3. Changed theme
4. Deleted wp-includes folder and replaced with latest folder from wordpress 4.1.1
5. Deleted wp-admin folder and replaced
6. Replaced the files in the root folder with the ones from the latest wordpress install. (did not replace wp-config)

I have a question on step 6 above. There are some files that existent in our current folder but do not exist in the wordpress install. There are
a. .htaccess
b. wp-register.php
c. wp-pass.php
d. wp-config.php.dnb.wss

Items a,b,c,d above do not have an equivalent in the latest wordpress istall. I am not sure if I should delete them.

Does anyone know why these would exist in our wordpress install but not in wordpress 4.1.1?

I looked at wordpress backups from one year ago and all these files exist. Yet the hack only appeared 2 months ago.

@wslade
It returned a 200 OK

However I have checked the file structure and the file does not exist in the file structure.

I had already read through the links posted by WPyogi and tried the ideas there.

Does anyone have any thoughts how to find the infected file ?

I have been doing a lot of searching on this. I am hoping someone out there has some ideas.

How would I go about posting the titles from this specific category on a separate page