My site seems to be infected, I ran a scan and it returned the following for me to review:
/public_html/wp-admin/includes/class-pclzip.php
?…/public_html/wp-content/plugins/js_composer/assets/lib/bower/ace-builds/src-min-noconflict/worker-css.js
?…/public_html/wp-content/plugins/js_composer/assets/lib/bower/json-js/json2.min.js
?…/public_html/wp-content/plugins/js_composer/assets/lib/bower/lessjs/dist/less.min.js
?…/public_html/wp-content/plugins/js_composer/assets/lib/php.default/php.default.min.js
?…/public_html/wp-content/plugins/js_composer/include/classes/editors/class-vc-backend-editor.php
?…/public_html/wp-content/plugins/js_composer/include/classes/editors/class-vc-frontend-editor.php
?…/public_html/wp-content/plugins/revslider/admin/assets/js/edit_layers.js
?…/public_html/wp-content/plugins/revslider/admin/assets/js/edit_layers_timeline.js
?…/public_html/wp-content/plugins/revslider/includes/slider.class.php
?…/public_html/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js
?…/public_html/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js
?…/public_html/wp-content/themes/gastrobar/assets/js/modules/plugins/jquery.plugin.js
?…/public_html/wp-includes/js/json2.js
?…/public_html/wp-includes/js/json2.min.js
?…/public_html/wp-includes/js/tw-sack.js
?…/public_html/wp-includes/js/tw-sack.min.js
?…/public_html/wp-includes/js/jquery/jquery.form.min.js
?…/public_html/wp-includes/js/jquery/jquery.schedule.js
?…/public_html/wp-includes/js/tinymce/tiny_mce_popup.js
I have updated the WP Bakery PageBuilder and PHP to latest version but the issue is still there. This seems to be related to the Revolution Slider plugin.
The whole page is linked to some random site. When anyone click anywhere on the page like slider navigation or social links it redirects to those links.
