๐ฉ๐ช
LRob
2026-07-10 20:02:06
(2 days ago)
CrowdSec: lrob/wp-login-slow-bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (Macintosh; Intel Mac O ...
show more
CrowdSec: lrob/wp-login-slow-bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:118.0) Gecko/20100101 Firefox/118.0","Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gec
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-10 19:03:53
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 2002:8fc6:c2ed::8fc6:c2ed (Unknown): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 2002:8fc6:c2ed::8fc6:c2ed (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 15:03:46.616270 2026] [security2:error] [pid 23124:tid 23124] [client 2002:8fc6:c2ed::8fc6:c2ed:58467] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||insidepublications.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "insidepublications.com"] [uri "/wp-json/wp/v2/users"] [unique_id "alFCEjxelJ4zPiDedSHMwAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-10 18:12:09
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 2002:8fc6:c2ed::8fc6:c2ed (Unknown): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 2002:8fc6:c2ed::8fc6:c2ed (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 14:12:04.920079 2026] [security2:error] [pid 475084:tid 475084] [client 2002:8fc6:c2ed::8fc6:c2ed:51709] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||inverzona.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "inverzona.com"] [uri "/wp-json/wp/v2/users"] [unique_id "alE19IK6N9sOa66WpaSbVgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
CoreTech srl
2026-07-10 14:29:22
(2 days ago)
ntopng alert: blacklisted_server_contact
Hacking
Anonymous
2026-07-09 19:30:06
(3 days ago)
IP banned by Fail2Ban in jail nginx-abusive-ips
Web App Attack
Brute-Force
Bad Web Bot
๐ฉ๐ช
ger-stg-sifi1
2026-07-09 19:27:37
(3 days ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-09 15:24:26
(3 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247
Exploited Host
Web App Attack
๐ณ๐ฑ
Redeco Hosting
2026-07-09 14:30:09
(3 days ago)
Failed login attempt detected by Fail2Ban in plesk-wordpress jail
Exploited Host
Anonymous
2026-07-09 14:26:22
(3 days ago)
143.198.194.237 - - [09/Jul/2026:16:25:01 +0200] "POST /wp-login.php HTTP/1.1" 200 2700 "https://FAS ...
show more
143.198.194.237 - - [09/Jul/2026:16:25:01 +0200] "POST /wp-login.php HTTP/1.1" 200 2700 "https://FASTLINECLEARING.NET/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36"
143.198.194.237 - - [09/Jul/2026:16:25:02 +0200] "POST /wp-login.php HTTP/1.1" 200 2181 "https://FASTLINECLEARING.NET/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36"
143.198.194.237 - - [09/Jul/2026:16:25:41 +0200] "POST /wp-login.php HTTP/1.1" 200 2697 "https://FASTLINECLEARING.NET/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:121.0) Gecko/20100101 Firefox/121.0"
143.198.194.237 - - [09/Jul/2026:16:25:43 +0200] "POST /wp-login.php HTTP/1.1" 200 2178 "https://FASTLINECLEARING.NET/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:121.0) Gecko/20100101 Firefox/121.0"
143.198.194.237 - - [09/Jul/2026:16:26:20 +0200] "POST /wp-login.php HTTP/1.1" 200 269
...
show less
Brute-Force
Web App Attack
๐ช๐ธ
masterguru
2026-07-09 09:12:03
(4 days ago)
BAD BOT - Detected and Blocked.. Matched phrase "python-requests" at REQUEST_HEADERS:User-Agent. (11 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "python-requests" at REQUEST_HEADERS:User-Agent. (1100000-122)
show less
Bad Web Bot
๐ณ๐ฑ
Site.eu
2026-07-08 22:51:08
(4 days ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ง๐ช
taivas.nl
2026-07-08 22:32:10
(4 days ago)
Wordpress_login_attempts
Bad Web Bot
๐ซ๐ท
LRob
2026-07-08 22:18:39
(4 days ago)
CrowdSec: lrob/wp-login-slow-bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (Macintosh; Intel Mac O ...
show more
CrowdSec: lrob/wp-login-slow-bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36","Mozilla/5.0 (Macintosh; Inte
show less
Brute-Force
Web App Attack
๐ง๐ช
taivas.nl
2026-07-08 22:02:09
(4 days ago)
Bad_requests
Bad Web Bot
๐ช๐ธ
alferez
2026-07-08 20:41:22
(4 days ago)
Multiple WP Login Attack
Hacking
Exploited Host
Web App Attack