• Around 12/26 I noticed a large increase in spammy form submissions on my client’s site. In order to resolve this, I activated the Akismet Anti-Spam plugin as advised by multiple articles I found.

    More recently, I’ve been getting locked out of logging in to my account due to “too many log in attempt” – after only trying once (I also have the correct password). Turns out there were a large number of fraudulent attempts to log in to the WordPress account. AND all of these attempts had the same IP address – even my attempts. And the listed IP address is not my actual IP address – not even from the same city.

    Dug further and it looks like around 1/26, all user IPs were being tracked as coming from the same IP address. So all form submissions (spam and non-spam) and all login attempts were tracked as the same IP.

    Does anyone have any insight on how this could’ve happened or how I might resolve this? This obviously isn’t ideal because I can’t even blacklist the IP because then I get completely blacklisted too because it thinks I am the same IP.

    Any help here would be GREATLY appreciated!

    The page I need help with: [log in to see the link]

Viewing 8 replies - 1 through 8 (of 8 total)
  • Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    What is that IP address? You site does not seem to be behind a CDN. What security plugin(s) are you using that might lock one out?

    Thread Starter lpartyka03

    (@lpartyka03)

    146.66.68.87 is the IP address that continues to appear for all users. There is a Loginizer plugin activated – in that plugin, it lists that IP (146.66.68.87) as my IP, but that is not my correct IP address. I’m not sure why it has the IP listed in there, but I did not make that change. Not sure if it’s referencing it from somewhere else on the site.

    Note: It’s Loginizer’s free version – I have not upgraded.

    • This reply was modified 4 years, 10 months ago by lpartyka03.
    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    That’s the IP of your site. I recommend asking at https://www.ads-software.com/support/plugin/loginizer/#new-post so the plugin’s developers and support community can help you with this.

    @lpartyka03 sounds like GoDaddy (I believe you have your site hosted there) has some service in front of your website (a proxy maybe, for security purposes), and as such your WordPress is registering the IP address of the proxy service itself.

    Please open a support ticket with GoDaddy (if you are indeed hosted there) to ask for further help as this is best solved at the server-level.

    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    @valentinbora The site is actually hosted at Siteground.

    @sterndata sorry for the confusion. It still sounds like a rev-proxy sitting in between traffic, doesn’t it?

    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    perhaps. best dealt with by siteground support.

    Hello @lpartyka03

    My website has the same problem!! (www.tronwind.com)
    This problem has been happening since the beginning of January 2020.

    My site is also hosted at Siteground. I asked siteground support team. They said the site has no problem.

    I have tried several methods, but the issue still remains.

    Have you solved this problem? Could you tell me how to do?

    Thank you!

Viewing 8 replies - 1 through 8 (of 8 total)
  • The topic ‘All Users Tracked as Same IP Address?’ is closed to new replies.