๐บ๐ธ
WeekendWeb
2026-03-05 08:06:41
(4 months ago)
Wordpress Vunerability attack
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-03-04 23:36:15
(4 months ago)
Brute-Force
Web App Attack
๐น๐ท
rtbh.com.tr
2026-03-04 20:11:53
(4 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
๐ฉ๐ช
ps-center
2026-03-04 08:58:55
(4 months ago)
ABV: Web Attack GET /wp-includes/wlwmanifest.xml
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐ฎ๐ช
Coolnagour
2026-03-04 07:22:00
(4 months ago)
http-probing: /dispatch/operator/overview/index/wp-includes/wlwmanifest.xml
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-04 06:58:31
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 157.245.108.146 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 157.245.108.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 04 01:58:24.605251 2026] [security2:error] [pid 21225:tid 21225] [client 157.245.108.146:65122] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||idmadventures.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "idmadventures.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aafYEEpjQwbBsvMJF0ypxAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-03-04 06:38:43
(4 months ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ฌ๐ง
Apache
2026-03-04 06:26:37
(4 months ago)
(mod_security) mod_security (id:210410) triggered by 157.245.108.146 (IN/India/-): 5 in the last 300 ...
show more
(mod_security) mod_security (id:210410) triggered by 157.245.108.146 (IN/India/-): 5 in the last 300 secs
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-04 06:25:40
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 157.245.108.146 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 157.245.108.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 04 01:25:37.135975 2026] [security2:error] [pid 5180:tid 5191] [client 157.245.108.146:50577] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||orthopedica.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "orthopedica.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "aafQYe7Oj7X_PW2fRd5zRAAAAIk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ฌ
ipidentify
2026-03-04 05:00:14
(4 months ago)
2026-03-04T05:00:15Z GET /2018/wp-includes/wlwmanifest.xml
2026-03-04T05:00:15Z GET /2019/wp-include ...
show more
2026-03-04T05:00:15Z GET /2018/wp-includes/wlwmanifest.xml
2026-03-04T05:00:15Z GET /2019/wp-includes/wlwmanifest.xml
2026-03-04T05:00:15Z GET /shop/wp-includes/wlwmanifest.xml
2026-03-04T05:00:15Z GET /wp1/wp-includes/wlwmanifest.xml
2026-03-04T05:00:15Z GET /test/wp-includes/wlwmanifest.xml
2026-03-04T05:00:15Z GET /media/wp-includes/wlwmanifest.xml
2026-03-04T05:00:15Z GET /wp2/wp-includes/wlwmanifest.xml
2026-03-04T05:00:16Z GET /site/wp-includes/wlwmanifest.xml
2026-03-04T05:00:16Z GET /cms/wp-includes/wlwmanifest.xml
2026-03-04T05:00:16Z GET /sito/wp-includes/wlwmanifest.xml
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-04 04:26:08
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 157.245.108.146 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 157.245.108.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 23:26:04.273324 2026] [security2:error] [pid 14893:tid 14893] [client 157.245.108.146:60753] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||daos.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "daos.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "aae0XBpQlchziry9eZMKDAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
CryptoYakari
2026-03-04 00:44:08
(4 months ago)
157.245.108.146 - - [04/Mar/2026:03:44:05 +0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.0" 404 31 ...
show more
157.245.108.146 - - [04/Mar/2026:03:44:05 +0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
157.245.108.146 - - [04/Mar/2026:03:44:05 +0300] "GET //xmlrpc.php?rsd HTTP/1.0" 404 201 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
157.245.108.146 - - [04/Mar/2026:03:44:06 +0300] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
157.245.108.146 - - [04/Mar/2026:03:44:06 +0300] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
157.245.108.146 - - [04/Mar/2026:03:44:06 +0300] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.0" 4
...
show less
Web Spam
Blog Spam
Web App Attack
Bad Web Bot
๐ช๐ธ
masterguru
2026-03-04 00:02:33
(4 months ago)
WordPress: User enumeration. Pattern match "(author\\\\= (1000-123)
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-03-03 23:35:20
(4 months ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-03 23:29:00
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 157.245.108.146 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 157.245.108.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 18:28:52.553884 2026] [security2:error] [pid 22318:tid 22318] [client 157.245.108.146:62812] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.soundtrax.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.soundtrax.net"] [uri "/wp-json/wp/v2/users/"] [unique_id "aadutJ6JmmZmEdEl8PvWMwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack