Unknown user ‘admin’ created
-
Hi,
Just now i discovered that a new user with username ‘admin’ had been created, with user role subscriber and no registered email address. This scared me a little
Using Defender Pro I can see the IP address:
Description
added a new user: Username: admin, Role: SubscriberContext
users
Type
user
Ip Address
185.234.217.175
User
Guest
Date / Time
May 10, 2020 4:13 pmI then googled this IP address, and landed on this page:
https://www.abuseipdb.com/check/185.234.217.175The top abuse listing as well as multiple others, mention this plugin:
“Forbidden directory scan :: 2020/05/08 06:36:49 [error] 1046#1046: *322858 access forbidden by rule, client: 185.234.217.175, server: [censored_2], request: “GET /wp-content/plugins/custom-registration-form-builder-with-submission-manager/readme.txt HTTP/1.1”, host: “[censored_2]”Seeing as there seem to be no other questions about this, what do we do?
- The topic ‘Unknown user ‘admin’ created’ is closed to new replies.