Rpmas

This is a bit late but it’s a hack attempt.

My solution was simple. I don’t sell books to China or the Ukraine nor will mine be translated to their language. They aren’t a market. I don’t need their traffic so I block the entire IP range belonging to the host in China or the Ukraine.

Stops the problem dead in the water. Evaluate if you really need their traffic. If the answer is no? Block em.

Tried it in
Windows 7:
Firefox
Iron [Chromium]
IE 11
Maxthon
all new installs and updates. I just got the computer and OS 3 days ago.

Android Tablet: Chrome, Dolphin and CM browser

Also checked on XP
Pale Moon [firefox based]
Iron
Maxthon

no go.

Cache not installed yet. I am reconstructing the site on a new install of 4.0

Plugins:
Change DB Prefix
Content Hider
Disable Comments
Disable Directory listing
Limit Logins
Redirection
Rename wp-login
Show Hide Author
Wordfence
WP-Ban

Theme Salient

the site is being run as a CMS without blog or registration so it’s stripped out of everything.

I know what you mean. admin and all forms I could think of is blocked from use on my blog but they are trying it with every dictionary password. I just want to know where they got sadie1 for a password. That reminds me, I need to block test as a username.

They did me a service. I didn’t know that hole was there to access the login. I thought I had it sewn up. It’s in the template files for the site which I store in trash in case I need them. They aren’t there any more. They have been deleted.

on the bright side of the day, the logs just went dead for attempts to log in since I blocked at host level. It ignored my settings in WordPress and it ignored the fact the files causing the hole were deleted. Bots are not bright.

Thanks!. I have wi-fi and a tablet. Sounds great.

I know. It shocked me but the host thinks it is because they are using Ajax to try to access but Bad Behavior sees it so…

I’m out of luck on the phone. I live in a blackout zone. I have to travel 25 miles to use the cell.