Unknown user created

  • Hi thanks for the great plugin. Two issues I’m facing: 1. The time stamp is off by a few hours. I have a multi site environment and all sites have the same time but for some reason the plugin shows a few hours behind.
    2. I was going through my activity and noticed a user was created using my IP but I didn’t create the new user. Is it possible that another plugin created the user? This is the second time it’s happened. First time I deleted the cPanel account and reinstalled a fresh uptodate installation of wordpress and used strong passwords for all accounts and databases, increased security on my server and wordpress. It’s the only site on my server that keeps getting this error.
    Is this a targetted hack? What can I do to scan for the vulnerability or steps I can take to ensure I am or am not being hacked? Thank you so much for any and all help.

Viewing 1 replies (of 1 total)
  • Plugin Author gioni

    (@gioni)

    Hi!

    The plugin uses the server time and the website time zone that you’ve set in the main WordPress settings. So make sure they both are correct.

    The plugin records all user registrations/creations with no exception. So if a plugin or other code creates a user, it is recorded. It’s possible that the user has been created by exploiting some vulnerability in a plugin or a theme. Make sure that the user has no admin role. I’d recommend you to subscribe for email or mobile notifications about new users: https://wpcerber.com/wordpress-notifications-made-easy/

Viewing 1 replies (of 1 total)
  • The topic ‘Unknown user created’ is closed to new replies.