First of all, this board is for dedicated server owners and questions related to security of dedicated and VPS servers. However, I'll try to reply on your questions. Unfortunately, due to the nature of the of the shared plan, you don't have access to server logs. However, we have brute force detection scripts running on shared servers which block hosts making too many failed login attempts. What is happening more frequently than successful brute force is login details theft on the client computers via a trojan horse or virus. What is recommended to prevent this from happening is strong passwords as you mentioned, regular password change and up-to-date operating system with firewall as well as up-to-date antivirus with regular scans through entire system.