๐ฒ๐ฝ
octageeks.com
2026-07-10 04:18:59
(5 days ago)
Wordpress malicious attack:[octawp]
Web App Attack
๐บ๐ธ
lostswordfish.com
2026-07-09 17:46:04
(5 days ago)
Wordfence waf block on taussigtravel
Web App Attack
๐ซ๐ท
masterguru
2026-07-09 17:34:56
(5 days ago)
wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (88020-196)
Hacking
๐ฑ๐ป
garmtech.com
2026-07-09 16:10:48
(5 days ago)
IM360 WAF: Prohibited WordPress username login/registration
Web App Attack
๐ฉ๐ช
konseptit
2026-06-23 23:09:04
(3 weeks ago)
(wordpress) Failed wordpress login from 113.161.54.245 (VN/Vietnam/static.vnpt.vn)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-23 22:10:07
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 18:10:03.165391 2026] [security2:error] [pid 25915:tid 25915] [client 113.161.54.245:48932] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.brushmileage.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.brushmileage.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajsEO7JolWxRxcBd7W47mQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 08:39:56
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 04:39:48.919051 2026] [security2:error] [pid 31923:tid 31923] [client 113.161.54.245:43330] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||iplantotravel.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "iplantotravel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajpGVBgMNW2Vl7eL94ysBQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-22 22:26:06
(3 weeks ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 22:22:26
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 18:22:22.666177 2026] [security2:error] [pid 13288:tid 13288] [client 113.161.54.245:52434] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.texascottagebakers.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.texascottagebakers.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajm1nvmLBCRZKamvAY2YCgAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 21:57:42
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 17:57:37.299958 2026] [security2:error] [pid 25061:tid 25061] [client 113.161.54.245:51048] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.mundanestudies.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.mundanestudies.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajmv0RmQ2AhFAu-Iof9u_gAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฑ
Dolphi
2026-06-22 20:50:03
(3 weeks ago)
Excessive POST /xmlrpc.php requests
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 00:47:07
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 20:47:03.191523 2026] [security2:error] [pid 10769:tid 10769] [client 113.161.54.245:47260] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.americanexportimport.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.americanexportimport.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajiGBxpulkx5Nr2eAGyLzQAAAF4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 21:13:46
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 113.161.54.245 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 17:13:40.727689 2026] [security2:error] [pid 9356:tid 9356] [client 113.161.54.245:42162] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.haverhillhouse.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.haverhillhouse.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajhUBE2dqkGiUURH5VlPaQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-21 19:02:57
(3 weeks ago)
[redacted] 113.161.54.245 - - [21/Jun/2026:21:02:56 +0200] "POST /xmlrpc.php HTTP/1.1" 403 199 "-" " ...
show more
[redacted] 113.161.54.245 - - [21/Jun/2026:21:02:56 +0200] "POST /xmlrpc.php HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:48.0) Gecko/20100101 Firefox/48.0"
[redacted] 113.161.54.245 - - [21/Jun/2026:21:02:56 +0200] "POST /xmlrpc.php HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0"
[redacted] 113.161.54.245 - - [21/Jun/2026:21:02:56 +0200] "POST /xmlrpc.php HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:64.0) Gecko/20100101 Firefox/64.0"
[redacted] 113.161.54.245 - - [21/Jun/2026:21:02:56 +0200] "POST /xmlrpc.php HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0"
[redacted] 113.161.54.245 - - [21/Jun/2026:21:02:56 +0200] "POST /xmlrpc.php HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:98.0) Gecko/20100101 Firefox/98.0"
...
show less
Hacking
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-20 22:25:58
(3 weeks ago)
Brute-Force
Web App Attack