๐จ๐ฟ
ptlab
2026-07-05 12:45:28
(2 hours ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 12:24:43
(3 hours ago)
(mod_security) mod_security (id:225170) triggered by 162.43.118.144 (sv13463.xserver.jp): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 162.43.118.144 (sv13463.xserver.jp): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 08:24:36.965962 2026] [security2:error] [pid 25330:tid 25330] [client 162.43.118.144:44396] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||high5-vr.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "high5-vr.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akpNBECgrDSEIsAnuKBqNgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ท
setupgr
2026-07-05 11:52:42
(3 hours ago)
(wplogin_block) Blocked WP-Login Access Attempt 162.43.118.144 (JP/Japan/Tokyo/Chiyoda/-/[AS131965 X ...
show more
(wplogin_block) Blocked WP-Login Access Attempt 162.43.118.144 (JP/Japan/Tokyo/Chiyoda/-/[AS131965 XSERVER Xserver Inc.]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 162.43.118.144 - - [05/Jul/2026:14:52:22 +0300] "GET /wp-login.php HTTP/2.0" 200 7330 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
show less
Port Scan
๐ฉ๐ช
brechtr
2026-07-05 11:49:58
(3 hours ago)
[Press84-BanHammer] bad username โ Sourced from: www.langsvlaamsewegen.be โ Request: POST /wp-login. ...
show more
[Press84-BanHammer] bad username โ Sourced from: www.langsvlaamsewegen.be โ Request: POST /wp-login.php
show less
Brute-Force
๐ช๐ธ
masterguru
2026-07-05 11:48:07
(3 hours ago)
(wplogin) Failed WordPress login from 162.43.118.144 (JP/Japan/sv13463.xserver.jp): 5 in the last 36 ...
show more
(wplogin) Failed WordPress login from 162.43.118.144 (JP/Japan/sv13463.xserver.jp): 5 in the last 3600 secs (0-122)
show less
Hacking
๐บ๐ธ
factor1
2026-07-05 11:31:56
(3 hours ago)
Fail2ban at saturn Reports Abuse.
Brute-Force
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-05 11:24:00
(4 hours ago)
(y4) Failed scan -byebye- from 162.43.118.144 (JP/Japan/sv13463.xserver.jp): (CF_ENABLE)
Hacking
๐ฉ๐ช
FeG Deutschland
2026-07-05 10:56:24
(4 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27
Exploited Host
Web App Attack
๐บ๐ธ
lostswordfish.com
2026-07-05 10:46:03
(4 hours ago)
Wordfence waf block on decarcerationnation
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 10:27:24
(5 hours ago)
(mod_security) mod_security (id:225170) triggered by 162.43.118.144 (sv13463.xserver.jp): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 162.43.118.144 (sv13463.xserver.jp): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 06:27:21.330952 2026] [security2:error] [pid 8987:tid 8987] [client 162.43.118.144:53472] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||nwtree.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nwtree.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akoxifbp5tDHdy5R9yq8nAAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-05 10:19:09
(5 hours ago)
162.43.118.144 - - [05/Jul/2026:12:19:01 +0200] "GET /wp-login.php HTTP/2.0" 200 3998 "-" "Mozilla/5 ...
show more
162.43.118.144 - - [05/Jul/2026:12:19:01 +0200] "GET /wp-login.php HTTP/2.0" 200 3998 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
...
show less
Web App Attack