Hi all... I'd love some thoughts from those who have more experience than I do...
I installed 404 Notifier plugin on a small client's site maybe a year ago(?) and over the past few weeks only, have noticed a significant number of emails from the plugin. It almost looks like a bot or a hacker is "fishing" for an entry to the site... but the URLs it was coming up with were not correct until now.
(Eg. it came up with URLs such as: http://hazelwoodinteriors.ca/myadmin/scripts/setup.php -- which look like it's trying to find a way to gain access but it wasn't using a wordpress url?)
This evening, I've gotten at least 400 emails from the 404 Notifier, all of them are the same:
//------------------------------------------------
404 Report - a file not found error was registered on your site.
404 URL: http://hazelwoodinteriors.ca/wp-admin/
Referred by:
User Agent: Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)
------------------------------------------------------//
What's happening? Is this from Bing's bots for some reason? It seems almost like a brute force thing to me, but that's not a very educated guess!
If it looks malicious, what's your best advice for dealing with it? I'm not sure if it's gaining entrance, so am reluctant to change passwords or anything....
I will backup & update everything but this is a late-night issue that I have very little time to deal with. I have the Login Lockdown plugin on the login screen, but I doubt that helps when it comes to a software invasion?
Huge thanks in advance!
Lindsay