How to disable pages like this ” ***.com/?page_id=28 “

im an Junior System Administrator , just started the job a month ago.
normally till now i was facing A=Dovecot_login/A=fixed_login/A=cwd 3 types of situations where email get compromise by credentials or php exploit script.
there were two ways.
first two case change password & for php exploit script , disable that abc.php file.

but now i am facing exploit in this page ” ***.com/?page_id=28 ”
After Scanning his account “/home/*****/public_html/ ”
” ***.com/?page_id=28 ” this page came up , it have this code and its sending mass emails.

Im not PHP expert , please tell me which how can i comment that code which is sending mails.
because theres no actual .php page exist.
i assume that its a function in some wp-blog-header.php or wp-load.php or admin-header.php files. but not sure ..
HELP!!!! which file to disable or which code/function to comment.
===== Source Code of ***.com/?page_id=28 =====

[Large code excerpt removed by moderator per forum rules. Please use Pastebin or a Gist for all large code excerpts, they work better anyway.]

• This topic was modified 8 years, 2 months ago by Geoffrey Shilling.
• This topic was modified 8 years, 2 months ago by Geoffrey Shilling.