Title: XMLRPC.php failed login
Last modified: October 9, 2020

---

# XMLRPC.php failed login

 *  Resolved [samuelmarcinko](https://wordpress.org/support/users/samuelmarcinko/)
 * (@samuelmarcinko)
 * [5 years, 8 months ago](https://wordpress.org/support/topic/xmlrpc-php-failed-login/)
 * Hello. I want to ask a question. I’m receiving a WordFence emails and notifications
   that someone tried to login. Full message is:
 *  `Dongguan, China attempted a failed login using an invalid username “[login]”.
   [https://test.etilog.com/xmlrpc.php](https://test.etilog.com/xmlrpc.php)
    9. 
   10. 2020 8:08:44 (32 minutes ago) IP: 149.129.52.21 Hostname: 149.129.52.21 Human/
   Bot: Human Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/
   62.0 `
 * I’ve got about 100 requests from different IP addresses and countries.
    I blocked
   XMLRPC.php using .htaccess by adding
 *     ```
       # Deny access to xmlrpc.php file
       <files xmlrpc.php>
       order allow,deny
       deny from all
       </files>
       ```
   
 * But I’m still receiving notifications about failed attempt. How can I fix that?
   Or blocking using .htaccess above is enought ? Thank you for help
 * Here you can see attempts in WordFence
    [https://prnt.sc/uvxihy](https://prnt.sc/uvxihy)
    -  This topic was modified 5 years, 8 months ago by [samuelmarcinko](https://wordpress.org/support/users/samuelmarcinko/).
 * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fxmlrpc-php-failed-login%2F%3Foutput_format%3Dmd&locale=en_US)
   to see the link]_

Viewing 4 replies - 1 through 4 (of 4 total)

 *  Plugin Support [wfpeter](https://wordpress.org/support/users/wfpeter/)
 * (@wfpeter)
 * [5 years, 8 months ago](https://wordpress.org/support/topic/xmlrpc-php-failed-login/#post-13512635)
 * Hi [@samuelmarcinko](https://wordpress.org/support/users/samuelmarcinko/), thank-
   you for contacting us over this and letting us know that you’ve already made 
   the .htaccess change.
 * Access to that page may have been allowed for other reasons. Commonly, the WordPress
   app if you have 2FA or ReCAPTCHA enabled and the _Jetpack_ plugin amongst other
   services do require access to XML-RPC. As a result of this, it is a common route
   to be tried as you can see from the attempts screenshot you included. Do you 
   think any of those are the case with your site?
 * If you haven’t already, from **Wordfence > Login Security > Settings ** you can
   tick the box for **Disable XML-RPC authentication** and let me know if the login
   attempts cease.
 * Thanks,
 * Peter.
 *  Thread Starter [samuelmarcinko](https://wordpress.org/support/users/samuelmarcinko/)
 * (@samuelmarcinko)
 * [5 years, 8 months ago](https://wordpress.org/support/topic/xmlrpc-php-failed-login/#post-13512664)
 * I tried to install Disable XML-RPC plugin and it look that attempts for login
   are fixed. I didn’t see any new attempts for login
 *  Plugin Support [wfpeter](https://wordpress.org/support/users/wfpeter/)
 * (@wfpeter)
 * [5 years, 8 months ago](https://wordpress.org/support/topic/xmlrpc-php-failed-login/#post-13513175)
 * Hi [@samuelmarcinko](https://wordpress.org/support/users/samuelmarcinko/), that’s
   great news!
 * If you ever have any other queries about Wordfence in the future, please open
   a new topic and we’ll be glad to help you.
 * Peter.
 *  [xsiv](https://wordpress.org/support/users/xsiv/)
 * (@xsiv)
 * [5 years, 8 months ago](https://wordpress.org/support/topic/xmlrpc-php-failed-login/#post-13516586)
 * You can set the security to xmp-rpc in file manager to 0000
    i think that should
   work

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘XMLRPC.php failed login’ is closed to new replies.

 * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865)
 * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wordfence/)
 * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/)

## Tags

 * [attempt](https://wordpress.org/support/topic-tag/attempt/)
 * [failed login](https://wordpress.org/support/topic-tag/failed-login/)
 * [xmlrpc.php](https://wordpress.org/support/topic-tag/xmlrpc-php/)

 * 4 replies
 * 3 participants
 * Last reply from: [xsiv](https://wordpress.org/support/users/xsiv/)
 * Last activity: [5 years, 8 months ago](https://wordpress.org/support/topic/xmlrpc-php-failed-login/#post-13516586)
 * Status: resolved