๐ซ๐ท
SpaceHost-Server
2026-06-30 22:40:30
(2 days ago)
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-29 22:28:01
(3 days ago)
Brute-Force
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-06-29 06:12:01
(3 days ago)
Unauthorized access to webpage admin
Web App Attack
๐ฉ๐ช
macrob
2026-06-29 05:11:10
(3 days ago)
2026/06/29 05:11:08 [error] 359959#359959: *337629058 access forbidden by rule, client: 139.180.210. ...
show more
2026/06/29 05:11:08 [error] 359959#359959: *337629058 access forbidden by rule, client: 139.180.210.145, server: bin-spin.com, request: "GET /wp-includes/wlwmanifest.xml HTTP/1.1", host: "bin-spin.com"
2026/06/29 05:11:09 [error] 359959#359959: *337629069 access forbidden by rule, client: 139.180.210.145, server: bin-spin.com, request: "GET /xmlrpc.php?rsd HTTP/1.1", host: "bin-spin.com"
2026/06/29 05:11:09 [error] 359959#359959: *337629045 access forbidden by rule, client: 139.180.210.145, server: bin-spin.com, request: "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1", host: "bin-spin.com"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 04:56:00
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultruserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:55:54.929061 2026] [security2:error] [pid 21435:tid 21435] [client 139.180.210.145:63871] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.billymitchell.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.billymitchell.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akH62k5C4LEXLet-tMs3jAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 04:37:24
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultruserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:37:19.439139 2026] [security2:error] [pid 7401:tid 7401] [client 139.180.210.145:60307] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||billhumphreyresearch.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "billhumphreyresearch.com"] [uri "/blog/wp-json/wp/v2/users/"] [unique_id "akH2f60GO-xTY6Ghs9Wv-gAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 04:11:42
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultruserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:11:37.372444 2026] [security2:error] [pid 9695:tid 9695] [client 139.180.210.145:56273] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.bikiniadvice.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bikiniadvice.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akHweXt_5dj5CpWYCBQ0HwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 03:45:15
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultruserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 23:45:06.941874 2026] [security2:error] [pid 9422:tid 9422] [client 139.180.210.145:55952] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||marshdcs.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "marshdcs.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akHqQn1BtoO9AmAQpP2PlAAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Viveronese
2026-06-29 03:27:50
(3 days ago)
HTTP vulnerability scanning
Web App Attack
๐ฉ๐ช
expandmade.com
2026-06-29 02:50:14
(3 days ago)
unauthorized rest api call [29/Jun/2026:02:50:13 "GET //wp-json/wp/v2/users/"]
Web App Attack
Anonymous
2026-06-29 02:05:13
(4 days ago)
Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=19
Hacking
๐บ๐ธ
mnsf
2026-06-29 01:05:57
(4 days ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ฎ๐ฑ
Dolphi
2026-06-29 01:00:05
(4 days ago)
Excessive POST /xmlrpc.php requests
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 00:52:21
(4 days ago)
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultruserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 139.180.210.145 (139.180.210.145.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 20:52:18.004233 2026] [security2:error] [pid 2239:tid 2239] [client 139.180.210.145:57303] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bfpsamoa.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bfpsamoa.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akHBwmHlrvyWdecVBi0RIAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
YF
2026-06-29 00:45:08
(4 days ago)
Malicious web activity confirmed โ IP previously flagged as suspicious (automated re-check, score: 3 ...
show more
Malicious web activity confirmed โ IP previously flagged as suspicious (automated re-check, score: 38%)
show less
Web App Attack