πΊπΈ
masterguru
2026-07-18 09:36:29
(1 day ago)
WordPress: User enumeration. Pattern match "(author\\\\= (88030-169)
Hacking
π©πͺ
LRob
2026-07-18 07:28:56
(1 day ago)
CrowdSec: crowdsecurity/http-bf-wordpress_bf | req: /wp-login.php | UA: Mozilla/5.0 (Windows NT 11.0 ...
show more
CrowdSec: crowdsecurity/http-bf-wordpress_bf | req: /wp-login.php | UA: Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36
show less
Brute-Force
Web App Attack
π³π±
Site.eu
2026-07-18 07:14:41
(1 day ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
π©πͺ
FeG Deutschland
2026-07-18 07:08:48
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247
Exploited Host
Web App Attack
π©πͺ
abdubhai
2026-07-18 06:09:15
(1 day ago)
159.223.84.163 - - [18/Jul/2026:
...
Brute-Force
π«π·
solution.it
2026-07-18 06:00:00
(1 day ago)
[Sat Jul 18 08:00:00.187364 2026] [php7:error] [pid 452650:tid 452650] [client 159.223.84.163:53792] ...
show more
[Sat Jul 18 08:00:00.187364 2026] [php7:error] [pid 452650:tid 452650] [client 159.223.84.163:53792] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat
show less
Web App Attack
πΊπΈ
lostswordfish.com
2026-07-18 05:44:06
(1 day ago)
Wordfence waf block on fairregistry
Web App Attack
π©πͺ
LRob
2026-07-17 02:52:46
(2 days ago)
CrowdSec: crowdsecurity/http-bf-wordpress_bf | req: /wp-login.php | UA: Mozilla/5.0 (Windows NT 10.0 ...
show more
CrowdSec: crowdsecurity/http-bf-wordpress_bf | req: /wp-login.php | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36
show less
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-17 00:46:20
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 159.223.84.163 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 159.223.84.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:46:14.571282 2026] [security2:error] [pid 25455:tid 25455] [client 159.223.84.163:59667] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||geckoturner.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "geckoturner.com"] [uri "/wp-json/wp/v2/users"] [unique_id "all7VorhnvtHwUmn5J1neQAAAAQ"], referer: https://www.bing.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
COMAITE
2026-07-16 20:29:23
(2 days ago)
CMS (WordPress or Joomla) brute force attempt.
Web App Attack
π³π±
Site.eu
2026-07-16 18:39:05
(2 days ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
Anonymous
2026-07-16 17:20:03
(3 days ago)
| [Dangerous/Singapore] Aggressive IP 159.223.84.163 (~30 hits). Type: DoS Defender- Web server 400 ...
show more
| [Dangerous/Singapore] Aggressive IP 159.223.84.163 (~30 hits). Type: DoS Defender- Web server 400 error code
show less
Web App Attack
Hacking
SQL Injection
π©πͺ
LRob
2026-07-16 15:23:46
(3 days ago)
CrowdSec: crowdsecurity/http-bf-wordpress_bf | req: /wp-login.php | UA: Mozilla/5.0 (X11; Linux x86_ ...
show more
CrowdSec: crowdsecurity/http-bf-wordpress_bf | req: /wp-login.php | UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36
show less
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 14:44:29
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 159.223.84.163 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 159.223.84.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 10:44:25.600168 2026] [security2:error] [pid 14041:tid 14041] [client 159.223.84.163:57006] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||frogdesignmexico.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "frogdesignmexico.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aljuSXSMGUQJXUzIJlSxlgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
dynamix
2026-07-16 14:29:27
(3 days ago)
WordPress wp-login.php Brute Force Attack
Brute-Force
Web App Attack