I think the new token that suddenly enters the wallet is not caused by pressing some spam links, it's likely that it happened because the new token is embedded with some code that can see every new transaction on the network, then the token enters, even hardware wallets also experienced this, but nothing to worry about, as long as you don't make transactions with the token then the wallet is safe.