Title: hack by post wp-admin/admin-ajax.php Last modified: November 29, 2016 --- # hack by post wp-admin/admin-ajax.php * Resolved [l.mouren](https://wordpress.org/support/users/lmouren/) * (@lmouren) * [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/) * Hello, * I activated a lot of paramaters of your plugin to securize my WP but i continue to have kacking by post request on wp-admin/admin-ajax.php. There is a parameter in your plugin to securize this file ? * Best regards Viewing 7 replies - 1 through 7 (of 7 total) * [Česlav Przywara](https://wordpress.org/support/users/chesio/) * (@chesio) * [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/#post-8493620) * Hi, * Can you be more specific regarding: “i continue to have kacking by post request on wp-admin/admin-ajax.php” ? Can you post examples of the hack attempts here? * Keep in mind that `wp-admin/admin-ajax.php` file normally receives a lot of POST traffic, because all AJAX requests generated by WordPress are routed through that file. * Cheers, Česlav * Thread Starter [l.mouren](https://wordpress.org/support/users/lmouren/) * (@lmouren) * [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/#post-8493911) * Yes i know but my website is hacking a lot and always there is a php file created on uploads/2016/11/ and when i see logs at the time where this malaware is created i see post and get request to wp-admin/admin-ajax.php. * “POST /wp-admin/admin-ajax.php HTTP/1.1” 500 25 “-” “Mozilla/5.0 (Windows NT 6.2; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2873.0 Safari/ 537.36 “GET /wp-content/uploads/2016/11/ HTTP/1.1” 200 322 “-” “Mozilla/5.0 ( Windows NT 6.2; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2873.0 Safari/537.36” * Plugin Contributor [wpsolutions](https://wordpress.org/support/users/wpsolutions/) * (@wpsolutions) * [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/#post-8499943) * You likely have a malware infected or vulnerable plugin/theme or files somewhere on your site. I recommend you thoroughly go through your site and clean it. The following might be useful: [https://codex.wordpress.org/FAQ_My_site_was_hacked](https://codex.wordpress.org/FAQ_My_site_was_hacked) - This reply was modified 9 years, 5 months ago by [wpsolutions](https://wordpress.org/support/users/wpsolutions/). - This reply was modified 9 years, 5 months ago by [wpsolutions](https://wordpress.org/support/users/wpsolutions/). * Thread Starter [l.mouren](https://wordpress.org/support/users/lmouren/) * (@lmouren) * [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/#post-8502417) * thanks i clean it a lot but well… Thanks * Plugin Contributor [mbrsolution](https://wordpress.org/support/users/mbrsolution/) * (@mbrsolution) * [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/#post-8504344) * [@lmouren](https://wordpress.org/support/users/lmouren/) did you resolve your problem following [@wpsolutions](https://wordpress.org/support/users/wpsolutions/) instructions? * Thread Starter [l.mouren](https://wordpress.org/support/users/lmouren/) * (@lmouren) * [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/#post-8505704) * Instructions it’s what i do everytime i see hack file always in uploads/ folder but i have do a lot of things but i have to see my files every days because i’m hacking since i’m online (every 2 or 4 days…) * But thanks i will see * Plugin Contributor [mbrsolution](https://wordpress.org/support/users/mbrsolution/) * (@mbrsolution) * [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/#post-8505772) * Have you spoken to your host about this issue? If you have to check your files every second day then you do have a problem. This is not normal. - This reply was modified 9 years, 5 months ago by [mbrsolution](https://wordpress.org/support/users/mbrsolution/). Viewing 7 replies - 1 through 7 (of 7 total) The topic ‘hack by post wp-admin/admin-ajax.php’ is closed to new replies. * ![](https://ps.w.org/all-in-one-wp-security-and-firewall/assets/icon-256x256. png?rev=2798307) * [All-In-One Security (AIOS) – Security and Firewall](https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/) * [Frequently Asked Questions](https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/#faq) * [Support Threads](https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/) * [Active Topics](https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/unresolved/) * [Reviews](https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/reviews/) * 7 replies * 4 participants * Last reply from: [mbrsolution](https://wordpress.org/support/users/mbrsolution/) * Last activity: [9 years, 5 months ago](https://wordpress.org/support/topic/hack-by-post-wp-adminadmin-ajax-php/#post-8505772) * Status: resolved