Strange WordPress Activity Log Event

anon13908154 · September 25, 2021, 5:59am

Good day,

I’m not yet sure if this is an issue, but just something I thought was rather strange and was curious about.

I run a WordPress site, and was doing some scheduled improvements when this popped up on my Activity Log:

Naturally, I looked up the IP address, since I haven’t shared the website with that many people, and even though it now appears in search results on Google, I doubt many people would be searching the correct keywords, but I guess you never know. Anyhow, I didn’t recognize the IP address as that of any of my confirmed users. However, I looked up the IP and it appears to be registered under iFastNet…

My first though was that maybe iFastNet has a bot that visits websites under its domain (the timestamp is oddly precise), but what would cause it to log an action that I’m pretty sure you have to be logged in to carry out?

I’d greatly appreciate further explanation or speculation.

Thanks,
Turtle84375

dabebe · September 25, 2021, 6:15am

Wordpress isn’t secure
I recomend removing WordPress

anon13908154 · September 25, 2021, 6:20am

Welllll… an awful lot of people use WordPress…

And I do have an active SSL certificate.

dabebe · September 25, 2021, 6:26am

ye ik
But like its popular
So hackers hack it

anon13908154 · September 25, 2021, 6:27am

Sorry, but that’s not the answer I’m looking for

dabebe · September 25, 2021, 6:28am

Sorry i just wabted to tell you that wordpress isnt really safe and you might be getring hacked

anon13908154 · September 25, 2021, 6:30am

Thank you for your concern.

jaikrishna.t · September 25, 2021, 7:39am

With every new release of WordPress, the security is upgraded to the known threats. If you have one, please create an issue on github.

Greenreader9 · September 25, 2021, 1:27pm

That’s definitely odd. Maybe Admin will have an answer when he come online.

Admin · September 25, 2021, 4:16pm

In the log entry, I see a few things:

There is no user recorded for the activity.
The IP address listed there is the IP address your website is hosted on too.
The activity is deleting post changesets.
The activity was executed at the whole hour.

So my guess is that this is some kind of scheduled action from WordPress to clean up some old changesets, because it doesn’t really make sense to keep a record of every change ever made until the end of time.

anon13908154 · September 25, 2021, 11:22pm

Oh… that makes sense!

I never would have thought to check what my hosting account’s IP was.

Yeah, I just wanted to make sure I didn’t have some weird site security vulnerability.

Thanks for the help!

system · October 2, 2021, 11:23pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.