Support » Plugin: WPS Hide Login » Keep changing the name, but the kacker keep finding it out

  • Resolved avagp


    I installed this plugin because i was getting a lot of failed login attemps (brute force).

    So i changed the name of the wp-admin. After a week the brute force began again.
    Changed the name again. But the story repeated itself 3 more times.

    The names are no related to my site, neither between them.

    There is a way to get the new name of the wp-admin? 🙁
    (maybe via rrss… i don’t know)

Viewing 7 replies - 1 through 7 (of 7 total)
  • Plugin Author NicolasKulka


    Can users register for your site?

    lol…not sure what this is. I replied avago that i had the same problem like him but it seems i found out a way how the proper url could be resolved. So i contacted the other developer. Havent got a reply and the thread seems not to be complete. I shouldnt have wasted my time – just secure my site in other ways…

    Thread Starter avagp


    They cannot register.


    I have the same problem. user registration is not allowed. New login is 20 character random string.

    How is this being detected?

    Plugin Author NicolasKulka


    I have no idea, sadly ..

    Thread Starter avagp


    By today @nicolaskulka i keep changing the name and they keep getting it, even if it is a random string. Though i feel protected with your other plugin “Limit Login Attempts”.

    Even though, @solocare, said he/she have figured out how to do it. Maybe can DM you?

    @solocare, can you please indicate to Nicolas any hint that you have?


    • This reply was modified 3 years, 8 months ago by avagp.

    Hi @nicolaskulka,

    In my case it looks like the leak was via the xmlrpc.php file.

    I installed Disable XML-RPC

    48 hours on and there have been no more attacks.

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Keep changing the name, but the kacker keep finding it out’ is closed to new replies.