Website infected with malicious casino files that created new pages. How to find & delete the pages?

Ok, I got rid of much of the malicious code with the help of Wordfence.

The hidden button links on my pages are now gone.

BUT, the new casino pages are still live on my website (though, users aren’t able to access them since the links were in the hidden buttons which are now gone).

Things I tried:

\- Did a mass search on all files in Public folder for text that I see on these casino pages, including the word “casino”, but it finds nothing.

\- Looked in the myphpadmin Post area to see if the new pages are there. I don’t see them.

\- Ran the free Wordfence. It finds some malicious code in functions.php, and I deleted some, but It’s hard for me to tell which lines are malicious.

Where else can I look? It seems like these pages are either coming from my database, or being injected remotely through a line of code somewhere.

note: no backup

If anyone familiar with this could you please PM me and I can share with you the links.

**Edit: I found a fuk ton of casino pages by searching the database for a piece of text I saw in the page titles. Hopefully this clears it up…**

  1. Yup! Cleaning de DB sometimes is the only way… also, check your mains JS, there could be some data or code that you don’t recognize


This site will teach you how to build a WordPress website for beginners. We will cover everything from installing WordPress to adding pages, posts, and images to your site. You will learn how to customize your site with themes and plugins, as well as how to market your site online.

Buy WordPress Transfer