how are login attempts still happening???

This is VERY FISHY!
I want to know, how login attempts are still happening on my WordPress sites, where I have installed your plugin if I have done the following:

Since, even with your plugin, plus others like Wordfence, all my sites were killed a week ago. I decided to try something.
I made a FAKE wp-login.php file and hid the actual file since I log in via Cpanel.
So anyone using an automated hack to find a password to each of those sites will be wasting their time.
And yet, even though that’s the file that is accessed when trying to hack them via /wp-admin, I just got a login failed attempt once again!!!!

Something smells fishy here…