WordPress doesn’t include ads of any kind, so there’s no standard process for removing them. Possible reasons you could be seeing ads are: Your host is adding them, possibly as a condition of a cheap/free hosting plan. You installed a pirated theme or plugin that contains malicious code. Your website has been hacked in some … Read more
See FAQ My site was hacked in Codex, but really unless you are completely confident you can deal with check/cleanup/secure yourself – your only remaining option is to get/hire someone to do that.
Is there a malicious code inside my wordpress site? Probably. Carefully follow FAQ – My Site Was Hacked – WordPress Codex. Then take a look at the recommended security measures in Hardening WordPress – WordPress Codex and Brute Force Attacks – WordPress Codex Change all passwords. Scan your own PC. Tell your web host you … Read more
Is the malware in each post in the database? If so, something is inserting it, so you need to fix that first. Lots of googles/bings/ducks on how to remove malware from a WP site. (I have my own procedure here that I use for clients: https://www.securitydawg.com/recovering-from-a-hacked-wordpress-site/ ; there are others.) I’d do a thorough cleanup … Read more
I would diagnose/fix as if there was a hack of your system. Lots of references in the googles about that. But my technique is to change credentials on everything (hosting, wp admin users, database, FTP users), reinstall/upgrade everything (WP via the Upgrades page, plugins and themes via manual FTP transfer), check Child Theme code (if … Read more
You need to look for unusual files in your server. And that means to look at all files, even though the datestamp might not be changed. Like the htaccess files, files with double extensions, all index.* files. Look at them with an editor that wraps long lines. Some malware likes to put lots of extra … Read more