Unknown system – permanently deleting post Auto Draft

Hello RobMascari,

Sorry for the delayed response.

Regarding alert 2008 – WordPress creates auto drafts of a blog post while you are writing it and once such blog post is published, from time to time WordPress deletes such drafts, hence why such alert is generated. In fact the user reported with such alert is the system and not an actual user, correct?

As regards Alert 1003, it is “normal” as well. That means that someone launched an automated brute force attack against your website. As long as they do not guess a set of credentials you are fine. Of course you should keep an eye on the frequency of such attacks.

Yoast SEO – somehow deleted? Do you have more information? This could be a totally unrelated issue though in such case I would go through the audit log and try to find all the alerts related to the plugin, hence allowing you to trace back the attack.

Thank you very much. I can’t see how the Yoast SEO was deleted, it may have been something that happened when updating WP.

Hello RobMascari,

Did you find how your plugin was deleted? I.e. you had any alerts related to such deletion?

Let us know if you need help from our end with this and have a good day.

Hi,

from last 4-5 days following log is displaying on my site.
3 failed login(s) detected using non existing user. error code 1003. user – unknown system.

How can I stop him? he is using different ip ids at each time. how can block him please help.

Hello Sailee,

Please note that the issue you are reporting is not related to this thread so for next time open a new thread.

In the meantime please note that our plugin is an activity monitoring solution and in fact it is recording a brute force attack against your plugin homepage. What you need, i.e. to block the attack is a different solution though we cannot recommend anything in particular. If you would like to discuss this further drop us an email on [email protected].