Wordpress site infected via .config then used to send mass emails (help)

In Progress Posted 7 years ago Paid on delivery
In Progress Paid on delivery

I have this random situation, I have some hackers that are using a script on one of my websites to send emails from the server.

Here is how it looks like:

Time: Mon Mar 14 14:46:45 2016 +0000

Type: LOCALRELAY, Local Account - hairloss

Count: 101 emails relayed

Blocked: No

Sample of the first 10 emails:

2016-03-14 14:36:41 1afTbt-0003LN-MX <= [url removed, login to view] U=hairloss P=local S=1365 id=55444c5a6b6f0c33afd7840105270b27@ T="Your Neighbor Is a Dirty Wh0re" for [url removed, login to view]

I keep getting these type of notifications to my email, I've received 50+ so far same emails above, slightly different on each.

Now I spoke to my host and they have said:

Certain parts of my config files have been infected, I have the "WordFence" plugin and I can see multiple proxies on the site right now alternating they are using a page that doesn't even exist...

I need someone to close them off and help me restrict anything happening in the future. Anyone that has done this in the past can probably find the bugs with great ease, I have all the info, all the emails and best of all you have the wordfence widget that gives you the exact location they are coming from.

MySQL PHP Web Security Website Testing WordPress

Project ID: #9942040

About the project

17 proposals Remote project Active 7 years ago

17 freelancers are bidding on average $77 for this job


Hello There! Looks like your website is hacked. This is a normal thing, not a big deal! I will help you fix it today because I know what to do with it. I will cleanup your website for all those bad code which are More

$33 USD in 1 day
(188 Reviews)

Hi, I am interested in this project. Just check my review of work and give me an opportunity to prove myself. Please consider my bid. Thanks & Regards Dev ONLINE NOW

$88 USD in 3 days
(267 Reviews)

Hi, I have a few questions. Do you agree to update Wordpress and ALL plugins? Remove unnecesary plugins? Are you aware that Wordpress update can brake your website if you had bad coder workng on it? I can help More

$80 USD in 1 day
(61 Reviews)

I am Linux system engineer working with web hosting company from past two years and having knowledge of maintaining linux servers, security issue, software installation, server installation, DNS configuration & server More

$30 USD in 1 day
(63 Reviews)

Hi we can start right now and will finish it in next 2-3 hours 100% money back guarantee if not satisfied Our motto is to help people focus on their core business and leave their web design and development conce More

$35 USD in 1 day
(15 Reviews)

Hello Sir, I have checked your requirement and As a Cyber Security Researcher, I can help You. Thank You.

$444 USD in 1 day
(24 Reviews)

Hello how are you? I'm security expert and know how to deal well with infections of code in wordpress (you can check my previous work). I'm going to check your entire website to find and remove all types of malware, ma More

$25 USD in 1 day
(12 Reviews)

We're ready to be hired by you. We will be more than excited to provide you a quality solution and earn your respect, confidence and trust. and i give best solutions of this project.

$35 USD in 1 day
(0 Reviews)

Hello Sir, my name is Bastian Kempen and i'm a Webadministrator which is located in Bremen, GERMANY. I would love to help you to fix the Problem with the infected Wordpress page you have and would assist you in r More

$25 USD in 10 days
(0 Reviews)

I am experienced in cleaning malware from WordPress websites and finding the root of infection. I will also secure the website and advise you on how to prevent it from happening again

$35 USD in 3 days
(0 Reviews)

My job is to make security audits and secure bugs. I can do a security audit for your website and secure all bugs.

$45 USD in 2 days
(0 Reviews)