π©πͺ
Nerdscave Hosting
2026-06-14 09:20:51
(5 hours ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack
π«π·
SpaceHost-Server
2026-06-13 22:26:49
(15 hours ago)
Brute-Force
Web App Attack
π³π±
debestelapp
2026-06-13 18:30:03
(19 hours ago)
Exploited Host
π³π±
Site.eu
2026-06-12 18:29:40
(1 day ago)
Excessive multi-domain requests
Brute-Force
π³π±
wlt-blocker
2026-06-12 05:50:36
(2 days ago)
Unauthorized access to webpage admin
Web App Attack
π«π·
SpaceHost-Server
2026-06-11 22:28:10
(2 days ago)
Brute-Force
Web App Attack
π©πͺ
dbmwebdesign
2026-06-11 18:05:12
(2 days ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-11 09:25:48
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 157.66.27.55 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 157.66.27.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 05:25:35.021554 2026] [security2:error] [pid 19562:tid 19769] [client 157.66.27.55:56082] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.greaternorthmiamihistory.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.greaternorthmiamihistory.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aip_D5sxZwZ0AYhA61WGSgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-11 03:08:14
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 157.66.27.55 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 157.66.27.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 23:07:59.661323 2026] [security2:error] [pid 8448:tid 8448] [client 157.66.27.55:35776] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.ixd.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.ixd.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aiomjwFhzx60NWcRGDoJgAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³π±
Site.eu
2026-06-10 20:18:11
(3 days ago)
Excessive multi-domain requests
Brute-Force
πΊπΈ
TPI-Abuse
2026-06-10 19:12:31
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 157.66.27.55 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 157.66.27.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 15:12:14.561133 2026] [security2:error] [pid 31509:tid 31509] [client 157.66.27.55:41470] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.fundingangelinvestors.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fundingangelinvestors.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aim3DswkVRTLSMD1E6AUfgAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-10 17:07:26
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 157.66.27.55 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 157.66.27.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 13:07:12.439213 2026] [security2:error] [pid 20687:tid 20687] [client 157.66.27.55:32926] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.badgerkelley.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.badgerkelley.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aimZwHJtkx_5EoQ7FRya2QAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§π·
ICS Labs
2026-06-09 19:50:11
(4 days ago)
ICS Labs identified 157.66.27.55 as a malicious indicator from threat intelligence.
DDoS Attack
Hacking
Brute-Force
Exploited Host
π³π±
Mangelot Hosting
2026-06-09 07:15:57
(5 days ago)
(wp_login_try) srv103 WP Login Attempt 157.66.27.55 (VN/Vietnam/-): 10 in the last 3600 secs; Ports: ...
show more
(wp_login_try) srv103 WP Login Attempt 157.66.27.55 (VN/Vietnam/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
πΊπΈ
bigwavedave
2026-06-09 04:28:01
(5 days ago)
Wordpress Attack
Web App Attack