Anonymous
2026-07-08 18:46:15
(1 day ago)
Failed Wordpress Logins
Web App Attack
Anonymous
2026-07-08 14:05:47
(1 day ago)
Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=20
Hacking
๐บ๐ธ
kosada.com
2026-07-08 12:57:18
(1 day ago)
Web vulnerability probing: / (bogus vhost/SNI)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 10:30:32
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 141.94.95.189 (vps-7c74f329.vps.ovh.net): 1 in ...
show more
(mod_security) mod_security (id:240335) triggered by 141.94.95.189 (vps-7c74f329.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 06:30:28.885481 2026] [security2:error] [pid 20283:tid 20283] [client 141.94.95.189:57057] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.94.95.189 (+1 hits since last alert)|www.solventtrapco.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.solventtrapco.com"] [uri "/xmlrpc.php"] [unique_id "ak4mxHleceTmpXvnlSBh9gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 09:24:09
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 141.94.95.189 (vps-7c74f329.vps.ovh.net): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 141.94.95.189 (vps-7c74f329.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 05:24:06.270791 2026] [security2:error] [pid 32675:tid 32675] [client 141.94.95.189:58821] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.modalguitarist.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.modalguitarist.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak4XNuCTC0XwyU11Vxq31gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ambor
2026-07-08 09:20:19
(1 day ago)
Honeypot access: PHP file scan attempt: //xmlrpc.php. Path: //xmlrpc.php
Web App Attack
๐ซ๐ท
masterguru
2026-07-08 03:00:18
(1 day ago)
(PERMBLOCK) 141.94.95.189 (FR/France/vps-7c74f329.vps.ovh.net) has had more than 4 temp blocks in th ...
show more
(PERMBLOCK) 141.94.95.189 (FR/France/vps-7c74f329.vps.ovh.net) has had more than 4 temp blocks in the last 86400 secs (0-201)
show less
Hacking
๐ซ๐ท
masterguru
2026-07-08 00:29:50
(2 days ago)
(wordpress) Apache: Failed WordPress login from 141.94.95.189 (FR/France/vps-7c74f329.vps.ovh.net): ...
show more
(wordpress) Apache: Failed WordPress login from 141.94.95.189 (FR/France/vps-7c74f329.vps.ovh.net): 10 in the last 3600 secs (0-197)
show less
Hacking
๐ซ๐ท
masterguru
2026-07-07 23:59:25
(2 days ago)
(wordpress) Apache: Failed WordPress login from 141.94.95.189 (FR/France/vps-7c74f329.vps.ovh.net): ...
show more
(wordpress) Apache: Failed WordPress login from 141.94.95.189 (FR/France/vps-7c74f329.vps.ovh.net): 10 in the last 3600 secs (0-201)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-07 19:28:46
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 141.94.95.189 (vps-7c74f329.vps.ovh.net): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 141.94.95.189 (vps-7c74f329.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 15:28:42.902889 2026] [security2:error] [pid 30871:tid 30871] [client 141.94.95.189:50013] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||eatcakecup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eatcakecup.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak1TaoDwgo-w4a-lb03NPgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-07 17:40:04
(2 days ago)
IP banned by Fail2Ban in jail recidive
Web App Attack
Brute-Force
Bad Web Bot
๐ธ๐ช
nekopavel
2026-07-07 16:56:07
(2 days ago)
141.94.95.189 - - [07/Jul/2026:18:56:05 +0200]"GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 12383 ...
show more
141.94.95.189 - - [07/Jul/2026:18:56:05 +0200]"GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 123838"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36""0.102" "0.001""-" "FR"
141.94.95.189 - - [07/Jul/2026:18:56:05 +0200]"GET //xmlrpc.php?rsd HTTP/1.1" 404 123784"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36""0.041" "0.000""-" "FR"
141.94.95.189 - - [07/Jul/2026:18:56:05 +0200]"GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 123868"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36""0.042" "0.000""-" "FR"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 16:44:17
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 141.94.95.189 (vps-7c74f329.vps.ovh.net): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 141.94.95.189 (vps-7c74f329.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 12:44:12.994292 2026] [security2:error] [pid 30782:tid 30782] [client 141.94.95.189:57925] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||misfitranch.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "misfitranch.com"] [uri "/wp/wp-json/wp/v2/users/"] [unique_id "ak0s3FwJCI38WYZJZY_CnwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-07 14:29:54
(2 days ago)
(PERMBLOCK) 141.94.95.189 (FR/France/vps-7c74f329.vps.ovh.net) has had more than 4 temp blocks in th ...
show more
(PERMBLOCK) 141.94.95.189 (FR/France/vps-7c74f329.vps.ovh.net) has had more than 4 temp blocks in the last 86400 secs (0-196)
show less
Hacking
Anonymous
2026-07-07 14:00:07
(2 days ago)
IP banned by Fail2Ban in jail wordpress
Web App Attack
Brute-Force
Bad Web Bot