I have the Sucuri WordPress Security plugin. It has Audit Logs, which list changes, updates and deletions.
Here is a recent item on the list:
May 14, 2016 10:52 pm system 184.168.152.46 Post deleted; identifier: 8837
I see this kind of entry all the time. The IP address is GoDaddy, my hosting company. It seems to be telling me that someone or something used the GoDaddy host to delete post 8837. It wasn't me - in fact, this occurred at 10:52 pm, but my login for that day was 10:15 am. I did not hang out in the WordPress dashboard for ~12 hours then delete a post.
When I delete a post it looks like this:
May 10, 2016 12:52 am jessaskin 101.01.010.10 Post moved to trash; identifier: 1234; name: My Favorite Kitten;
So a couple of questions:
1. can anyone explain what's going on from GoDaddy's side?
2. can anyone tell me how I might find out what post 8837 was?