π«π·
SpaceHost-Server
2026-07-07 22:29:21
(1 day ago)
Brute-Force
Web App Attack
π«π·
SpaceHost-Server
2026-07-06 22:27:39
(2 days ago)
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-06 05:35:22
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 159.89.115.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 159.89.115.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 01:35:15.399440 2026] [security2:error] [pid 28519:tid 28519] [client 159.89.115.111:58714] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||exhaustthelimits.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "exhaustthelimits.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "aks-k7Ys-LE-XHVy91etNgAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
rh24
2026-07-06 04:44:29
(3 days ago)
(wordpress) Failed wordpress login from 159.89.115.111 (CA/Canada/-): (CF_ENABLE)
Brute-Force
π²π½
octageeks.com
2026-07-06 04:18:25
(3 days ago)
Wordpress malicious attack:[octamissingdomain]
Web App Attack
π©πͺ
abdubhai
2026-07-06 03:19:44
(3 days ago)
159.89.115.111 - - [06/Jul/2026:
...
Brute-Force
π³π±
GabrielJST
2026-07-06 01:26:51
(3 days ago)
(wordpress) Failed wordpress login from 159.89.115.111 (CA/Canada/-)
Brute-Force
πΊπΈ
kosada.com
2026-07-06 01:12:45
(3 days ago)
Web vulnerability probing: //wordpress/wp-includes/wlwmanifest.xml
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-06 00:51:10
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 159.89.115.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 159.89.115.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 20:51:03.883505 2026] [security2:error] [pid 23005:tid 23005] [client 159.89.115.111:50412] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||drwolberg.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drwolberg.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akr790zMk4KFSJtxzZwDiAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
WeekendWeb
2026-07-06 00:23:58
(3 days ago)
Wordpress Vunerability attack
Web App Attack
πΊπΈ
mnsf
2026-07-06 00:05:02
(3 days ago)
Abuse Detected (12)
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-06 00:02:23
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 159.89.115.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 159.89.115.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 20:02:20.574770 2026] [security2:error] [pid 7751:tid 7801] [client 159.89.115.111:55365] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ennerdale.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ennerdale.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "akrwjOKuh4Qhc-KbuiwGHAAAAYw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
Lezetho
2026-07-06 00:00:30
(3 days ago)
DDoS, WebSpam, Web Attack, and Brute-force blocked by Cloudflare
DDoS Attack
Email Spam
Hacking
Brute-Force
π©πͺ
TrackerSB
2026-07-05 23:19:15
(3 days ago)
159.89.115.111 - "-" [06/Jul/2026:01:19:14 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 200 1 ...
show more
159.89.115.111 - "-" [06/Jul/2026:01:19:14 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 200 1749 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "159.89.115.111"
159.89.115.111 - "-" [06/Jul/2026:01:19:14 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 200 1749 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "159.89.115.111"
...
show less
Web App Attack
π©πͺ
pltcldvlpr
2026-07-05 23:07:40
(3 days ago)
CMS/framework probe: 159.89.115.111 - - [06/Jul/2026:01:07:39 +0200] "GET //wp-includes/wlwmanifest. ...
show more
CMS/framework probe: 159.89.115.111 - - [06/Jul/2026:01:07:39 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" asn=14061 org="DigitalOcean, LLC" country=CA
...
show less
Web App Attack