This section explains how to find out if an IP is a compromised IP that is hacking from the IP’s access log, login log, or server-side access log in the security plugin for a WordPress site.

Log the IP of unauthorized access.

An IP is a sequence of numbers that represents the unique address and identification of the various computers connected to the Internet.

The ability to log the IPs of logged-in users is implemented in many plugins, including the All In One WP Security & Firewall security plugin for WordPress.

In the [Free] WordPress:Malware Scan & Security Plugin [Malware and Virus Detection and Removal] developed by WordPress Doctor, too,

IPs that have been successfully logged in with administrative privileges in the last month
IP log function to detect vulnerability attacks

Find out the details of the IP of the unauthorized access.

The AbuselPDB site allows anyone to post and share information about whether or not a hacker has gained unauthorized access to an IP.

https://www.abuseipdb.com/
It is possible to check the risk level of an IP here.

Enter the IP you want to check and click Check.

The search results screen will display a graph and information on how much the IP is being used by hackers, indicating the degree of risk.

Please note that IPs that have been hacked by hackers in the very recent past have a high risk rating, so a 0% rating does not necessarily mean that the IP is safe. (Please also refer to the information below, where IPs have been reported by a large number of users.)

Below that, you will also see information on how various people have posted about what kind of attacks they have been subjected to by this IP.