Hi,
Can you be more specific regarding: “i continue to have kacking by post request on wp-admin/admin-ajax.php” ? Can you post examples of the hack attempts here?
Keep in mind that wp-admin/admin-ajax.php file normally receives a lot of POST traffic, because all AJAX requests generated by WordPress are routed through that file.
Cheers,
Česlav
Yes i know but my website is hacking a lot and always there is a php file created on uploads/2016/11/ and when i see logs at the time where this malaware is created i see post and get request to wp-admin/admin-ajax.php.
“POST /wp-admin/admin-ajax.php HTTP/1.1” 500 25 “-” “Mozilla/5.0 (Windows NT 6.2; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2873.0 Safari/537.36
“GET /wp-content/uploads/2016/11/ HTTP/1.1” 200 322 “-” “Mozilla/5.0 (Windows NT 6.2; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2873.0 Safari/537.36”
You likely have a malware infected or vulnerable plugin/theme or files somewhere on your site.
I recommend you thoroughly go through your site and clean it.
The following might be useful:
https://codex.wordpress.org/FAQ_My_site_was_hacked
-
This reply was modified 9 years, 5 months ago by
wpsolutions.
-
This reply was modified 9 years, 5 months ago by wpsolutions.
thanks i clean it a lot but well…
Thanks
@lmouren did you resolve your problem following @wpsolutions instructions?
Instructions it’s what i do everytime i see hack file always in uploads/ folder but i have do a lot of things but i have to see my files every days because i’m hacking since i’m online (every 2 or 4 days…)
But thanks i will see
Have you spoken to your host about this issue? If you have to check your files every second day then you do have a problem. This is not normal.
-
This reply was modified 9 years, 5 months ago by
mbrsolution.
