π¬π§
Greg Poulson
2026-07-08 14:36:02
(1 hour ago)
Our website was hit by this DDOS at a rate of 316 in 5 minutes.
DDoS Attack
Web Spam
Brute-Force
πΊπΈ
TPI-Abuse
2026-07-08 10:47:05
(5 hours ago)
(mod_security) mod_security (id:225170) triggered by 130.210.6.241 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 130.210.6.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 06:47:00.849955 2026] [security2:error] [pid 8016:tid 8026] [client 130.210.6.241:63526] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||trulyoriginalpurpleoctopus.art|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "trulyoriginalpurpleoctopus.art"] [uri "/wp-json/wp/v2/users"] [unique_id "ak4qpCv2vENR83SXW7ph4AAAAQc"], referer: https://www.facebook.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
deskpass.com
2026-07-08 10:05:12
(5 hours ago)
GET /wp-login.php
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-08 08:51:29
(7 hours ago)
(mod_security) mod_security (id:225170) triggered by 130.210.6.241 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 130.210.6.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 04:51:24.524053 2026] [security2:error] [pid 5608:tid 5608] [client 130.210.6.241:57965] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||compingoinc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "compingoinc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ak4PjBzj8XH_EQ4F-oh5vAAAAAM"], referer: https://duckduckgo.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
DEV-DNS
2026-07-08 06:46:18
(9 hours ago)
(php-url-fopen) Failed php-url-fopen trigger from 130.210.6.241 (US/United States/-/-/-/-)
Web App Attack
π©πͺ
joharikop
2026-07-08 06:11:47
(9 hours ago)
Nginx: WordPress/CMS probe (wp-admin, wp-login, xmlrpc). Automated ban via fail2ban nginx-cms-probes ...
show more
Nginx: WordPress/CMS probe (wp-admin, wp-login, xmlrpc). Automated ban via fail2ban nginx-cms-probes jail.
show less
Web App Attack
Anonymous
2026-07-08 06:01:06
(9 hours ago)
Bot / scanning and/or hacking attempts: GET /wp-admin/ HTTP/1.1, GET /wp-login.php HTTP/1.1
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-08 05:49:02
(10 hours ago)
(mod_security) mod_security (id:225170) triggered by 130.210.6.241 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 130.210.6.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 01:48:55.284423 2026] [security2:error] [pid 6770:tid 6770] [client 130.210.6.241:52892] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||fractalsky.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fractalsky.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ak3kx5_95LkFU1ZRRQeu-gAAAAA"], referer: https://www.bing.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
Penny Packer
2026-07-08 05:31:49
(10 hours ago)
Fail2Ban apache-tripwires
Web App Attack
Anonymous
2026-07-08 05:03:56
(10 hours ago)
<jail> banned by fail2ban
Brute-Force
Web App Attack
π¨π¦
KIsmay
2026-07-08 03:57:27
(12 hours ago)
Jul 7 23:57:18 www4 WPAudit[630728]: 130.210.6.241 hvrhaulers.com "Mozilla/5.0 (Windows NT 10.0; Wi ...
show more
Jul 7 23:57:18 www4 WPAudit[630728]: 130.210.6.241 hvrhaulers.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" xtw18387f331:DH!bYsRn6573$3uk FAIL
Jul 7 23:57:21 www4 WPAudit[630728]: 130.210.6.241 hvrhaulers.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:118.0) Gecko/20100101 Firefox/118.0" admin:DH!bYsRn6573$3uk FAIL
Jul 7 23:57:23 www4 WPAudit[630728]: 130.210.6.241 hvrhaulers.com "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" server:F*uckYou FAIL
Jul 7 23:57:25 www4 WPAudit[630728]: 130.210.6.241 hvrhaulers.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" kobieta:kobieta123$$$ FAIL
Jul 7 23:57:27 www4 WPAudit[630728]: 130.210.6.241 hvrhaulers.com "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" wordc
...
show less
Brute-Force
Web App Attack
π³π±
ConsulHosting
2026-07-08 03:11:37
(12 hours ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
Anonymous
2026-07-08 02:50:30
(13 hours ago)
CMS (WordPress or Joomla) brute force attempt.
Brute-Force
π©πͺ
abdubhai
2026-07-08 02:10:49
(13 hours ago)
130.210.6.241 - - [08/Jul/2026:0
...
Brute-Force
π«π·
dynamix
2026-07-08 01:32:49
(14 hours ago)
WordPress wp-login.php Brute Force Attack
Brute-Force
Web App Attack