I am now at wits' end. I have looked at the wp forums and have seen similar posts to mine, however, they are all closed to comments and occurred on versions of wp prior to v3.
my host (Netfirms) has shut down my dozen domains due to a spam email being sent from a font.php or license.php hack (usually from the same domain sixsigmaz.com).
They have suspended my account 3 times in the past 3 days and previous wp posts really helped out: I asked my host to provide me with the email headers and they are not coming from me. I explain this to the abuse/support team and they usually reinstate me quite quickly but this is starting to become a royal pain in the ass.
My wp install is up to date as all the plugins are and I've deleted all unused features. What gives?
Oddly, I've had many domains up for several years, and these "hacking" problems began right after Netfirms was acquired by Godaddy.
I've changed from STRONG password to another STRONG password, and the support team confirms there has been no ftp access to my account in 30 days.
should I deny access from the .htaccess file for the IP addresses and domain names in the suspect email headers?
How can I ensure there are no other vulnerabilities? I have several wordpress sites, but the one at sixsigmaz.com seems to be especially vulnerable.
Thanks for your help,