Thanks @krishna for taking a look. There are no messages in GMT to suggest anything else is going on but I’m sitting on the edge of my seat whilst wordfence reports multiple bruteforce wp-login.php blocks per hour on about 8 of our domains. They are generating all kinds of usernames other than admin also.
Is this a rampant general surge in web hacking or funneled toward me because of being previously affected?
