cdrak0715

I had the same issue when I upgraded to the new version of the plugin. I’m using WP 4.2.4. The site disappeared. No admin. No site. Fortunately had an old version of the plugin in a test environment. I copied that to the live site and it’s fine now.

I stand corrected. It looks like the site map was generated correctly and Google is happy with it.

To everyone else who commented, if there’s a link like the one in my first post on this thread, it IS the XML site map.

Still have no sitemap and it’s prompting me to donate. Guess I have to look for another plugin.

Yes, it does. I was just curious. I installed this earlier today and it seems to be working, but I can see hits in the site logs, so I was wondering what happens during the lock down.

Thanks for the clarification, explanation and patience. Much clearer now. It seems to me the attempts have slowed since I installed this and that makes me very happy.

Yes, I’m looking at it through CPanel.

Anyway, I’m really confused now. I got a bunch of email alerts about being under attack, but when I lookup the IPs in wp_login_security_solution_fail I only see a few hits for the IPs reported in the emails.

Example, I got this email

Component                    Count     Value from Current Attempt
------------------------     -----     ---------------------------
Network IP                       1     188.135.15
Username                        50     admin

If I run the following SQL statement:
SELECT * FROMwp_login_security_solution_failwhereiplike '188.135.15%'

I get this result:

fail_id   ip            user_login    date_failed
2908      188.135.15.64 admin         2013-06-16 06:19:43
3161      188.135.15.64 administrator 2013-06-16 06:31:01

Not clear from the log. This is what I’m seeing. This IP wasn’t recorded in wp_login_security_solution_fail.

Host: 41.220.166.15
/wp-login.php
Http Code: 200 Date: Jun 14 02:57:59 Http Version: HTTP/1.0 Size in Bytes: 3117
Referer: –
Agent: Mozilla/5.0 (Windows NT 6.1; rv:19.0) Gecko/20100101 Firefox/19.0

Sorry, I’m afraid my original post wasn’t clear. I can see attempts in the latest visitor logs from my hosting service, but I don’t see them recorded in wp_login_security_solution_fail. There’s a gap in the records. Some attempts did get recorded later in the day, but it’s odd that some were skipped. The only thing I can think of is that whoever found the log in page, didn’t try to log in which is weird, but it’s the only thing that makes sense.

On the bright side, it looks like there hasn’t been an attempt since yesterday afternoon (around 3pm EDT), so maybe they’re taking the hint!

I noticed one “user” tried various combinations of names and words from the site as the user – and possibly the password as well. Interesting info. Thanks.

The amount of attempts at getting into the admin on the site has dwindled to a trickle since I installed this plugin. I had to block one IP because it wouldn’t quit and I didn’t want to cause problems with the server. I’m certain if I hadn’t blocked the IP, the attempts would still be going on.

I see what appears to be an encrypted password in the database. I’ve seen various attempts at users other than “admin” and I’m just curious as to what passwords are being tried. It’s curiosity, nothing else. I fully understand about not compromising security and not satisfying my curiosity isn’t a show stopper.