π©πͺ
FeG Deutschland
2026-07-10 00:36:55
(5 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 257
Exploited Host
Web App Attack
π²πΉ
Malta
2026-07-07 11:57:04
(1 week ago)
163.44.198.64 - - [07/Jul/2026:13:57:03 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; CrOS ...
show more
163.44.198.64 - - [07/Jul/2026:13:57:03 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
π©πͺ
ger-stg-sifi1
2026-07-07 11:41:02
(1 week ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
π©πͺ
FeG Deutschland
2026-07-07 11:29:25
(1 week ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 257
Exploited Host
Web App Attack
π«π·
tecnicorioja
2026-07-05 22:00:54
(1 week ago)
wp-login attack [05/Jul/2026:10:38:11
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-05 00:38:40
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 20:38:33.389267 2026] [security2:error] [pid 8148:tid 8148] [client 163.44.198.64:50198] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||puckerbackbikini.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "puckerbackbikini.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akmniTSbkidily9qfqLJiAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
backslash
2026-07-03 17:12:00
(1 week ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-07-03 13:56:30
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 09:56:26.824286 2026] [security2:error] [pid 2385:tid 2385] [client 163.44.198.64:57208] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||htu.modernsalessolutions.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "htu.modernsalessolutions.com"] [uri "/wp-json/wp/v2/users/2"] [unique_id "ake_issH4z-Eu3CwUteLBwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 11:38:46
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 07:38:41.430809 2026] [security2:error] [pid 17560:tid 17560] [client 163.44.198.64:54010] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||forerunnersjazz.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "forerunnersjazz.org"] [uri "/wp-json/wp/v2/users/3"] [unique_id "akefQcMW4bIhbrdXonpYHgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 09:34:23
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 05:34:19.488624 2026] [security2:error] [pid 7523:tid 7523] [client 163.44.198.64:42294] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||soereng.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "soereng.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akeCG2IbnYWNUnB9OXSXagAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 08:45:50
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:45:43.875095 2026] [security2:error] [pid 6240:tid 6240] [client 163.44.198.64:51252] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||losbarbarosdelnorte.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "losbarbarosdelnorte.com"] [uri "/wp-json/wp/v2/users/10"] [unique_id "akd2twnegLRhmiJNp9P2ygAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
FeG Deutschland
2026-07-03 07:53:33
(1 week ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
πΊπΈ
lostswordfish.com
2026-07-02 19:28:03
(1 week ago)
Wordfence waf block on wvrsol
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 17:39:12
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 163.44.198.64 (cpanel15wh.bkk1.cloud.z.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 13:39:06.669705 2026] [security2:error] [pid 25097:tid 25097] [client 163.44.198.64:56040] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||glendaleheritage.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "glendaleheritage.org"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akaiOq29WIlKrFdDo-GungAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π²π½
octageeks.com
2026-07-02 04:13:46
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack