Looks like spam pages are actually still there. Here’s an ex: https://therideshareguy.com/?index.php=work-from-home/work/
Ran another scan:
This file appears to be malicious
Filename: wp-includes/core.php
File type: Not a core, theme or plugin file.
Issue first detected: 18 secs ago.
Severity: Critical
Status New
This file appears to be installed by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The text we found in this file that matches a known malicious file is: “eval($_POST[“.
WordPress core file modified: index.php
Filename: index.php
File type: Core
Issue first detected: 40 secs ago.
Severity: Critical
Status New
This WordPress core file has been modified and differs from the original file distributed with this version of WordPress.
