๐ฉ๐ช
FeG Deutschland
2026-07-11 22:19:58
(23 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 257
Exploited Host
Web App Attack
Anonymous
2026-07-11 11:32:47
(1 day ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐จ๐ฟ
ptlab
2026-07-11 06:45:23
(1 day ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
๐ฉ๐ช
Hazzard
2026-07-10 23:49:47
(1 day ago)
(wordpress) Failed wordpress login from 162.55.82.145 (DE/Germany/Saxony/Falkenstein/server162.serve ...
show more
(wordpress) Failed wordpress login from 162.55.82.145 (DE/Germany/Saxony/Falkenstein/server162.serverportal.in/[redacted]): (CF_ENABLE)
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-09 15:30:33
(3 days ago)
(mod_security) mod_security (id:210350) triggered by 162.55.82.145 (server162.serverportal.in): 1 in ...
show more
(mod_security) mod_security (id:210350) triggered by 162.55.82.145 (server162.serverportal.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 11:30:29.843881 2026] [security2:error] [pid 4837:tid 4837] [client 162.55.82.145:33670] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||realdesigninterior.com|F|4"] [data "keep-alive, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "realdesigninterior.com"] [uri "/feed/atom/"] [unique_id "ak--lVJlfSLowYoDPfNV-AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 14:43:15
(3 days ago)
(mod_security) mod_security (id:210350) triggered by 162.55.82.145 (server162.serverportal.in): 1 in ...
show more
(mod_security) mod_security (id:210350) triggered by 162.55.82.145 (server162.serverportal.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 10:43:09.151877 2026] [security2:error] [pid 21846:tid 21846] [client 162.55.82.145:57432] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||prostar.industries|F|4"] [data "keep-alive, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "prostar.industries"] [uri "/feed/atom/"] [unique_id "ak-zfXLUMekZoAJW7w-vmgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 12:40:07
(3 days ago)
(mod_security) mod_security (id:210350) triggered by 162.55.82.145 (server162.serverportal.in): 1 in ...
show more
(mod_security) mod_security (id:210350) triggered by 162.55.82.145 (server162.serverportal.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 08:39:56.807851 2026] [security2:error] [pid 1440:tid 1440] [client 162.55.82.145:58304] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||leolion.net|F|4"] [data "keep-alive, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "leolion.net"] [uri "/wp-sitemap.xml"] [unique_id "ak-WnNhBpbYc4cGS097xogAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 11:49:11
(3 days ago)
(mod_security) mod_security (id:210350) triggered by 162.55.82.145 (server162.serverportal.in): 1 in ...
show more
(mod_security) mod_security (id:210350) triggered by 162.55.82.145 (server162.serverportal.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 07:49:03.429305 2026] [security2:error] [pid 25636:tid 25636] [client 162.55.82.145:56470] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||dymesich.com|F|4"] [data "keep-alive, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "dymesich.com"] [uri "/wp-sitemap-users-1.xml"] [unique_id "ak-Kr7vhVoTIF3Ip_A9xdwAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-09 01:01:33
(3 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 257
Exploited Host
Web App Attack
๐บ๐ธ
lostswordfish.com
2026-07-08 17:14:03
(4 days ago)
Wordfence waf block on secure2024 libjusco
Web App Attack
๐ฉ๐ช
georgengelmann
2026-07-08 11:25:24
(4 days ago)
Failed login attempt for superuser
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 06:21:40
(4 days ago)
(mod_security) mod_security (id:225170) triggered by 162.55.82.145 (server162.serverportal.in): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 162.55.82.145 (server162.serverportal.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 02:21:32.811932 2026] [security2:error] [pid 17938:tid 17938] [client 162.55.82.145:46088] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gaeltv.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gaeltv.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ak3sbC6I2rnxlg44tSSBIwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-07 08:43:15
(5 days ago)
(modsec_5040) ModSec 5040: API Basic Auth blocked from 162.55.82.145 (DE/Germany/static.145.82.55.16 ...
show more
(modsec_5040) ModSec 5040: API Basic Auth blocked from 162.55.82.145 (DE/Germany/static.145.82.55.162.clients.your-server.de): 1 in the last 3600 secs (0-196)
show less
Hacking
๐ฎ๐ช
RoboSOC
2026-06-11 10:05:11
(1 month ago)
React Server Components Remote Code Execution Vulnerability, PTR: static.145.82.55.162.clients.your- ...
show more
React Server Components Remote Code Execution Vulnerability, PTR: static.145.82.55.162.clients.your-server.de.
show less
Hacking
๐จ๐ญ
Origon
2026-05-05 00:19:22
(2 months ago)
NOQUEUE - IP: 162.55.82.145 - May 5 02:19:22 plesk postfix/smtpd[3847183]: NOQUEUE: reject: RCPT fr ...
show more
NOQUEUE - IP: 162.55.82.145 - May 5 02:19:22 plesk postfix/smtpd[3847183]: NOQUEUE: reject: RCPT from static.145.82.55.162.clients.your-server.de[162.55.82.145]: 554 5.7.1 Service unavailable; Client host [162.55.82.145] blocked using spam.spamrats.com; SPAMRATS IP Addresses See: https://www.spamrats.com/bl?162.55.82.145; from=<[email protected] > to=<REDACTED@REDACTED> proto=ESMTP helo=<static.145.82.55.162.clients.your-server.de>
show less
Email Spam