Anonymous
2026-07-06 16:33:10
(2 hours ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐ฆ๐น
neo72
2026-07-03 08:14:26
(3 days ago)
Detected malicious activity - bulk block
Brute-Force
Web App Attack
Anonymous
2026-07-02 22:23:56
(3 days ago)
Backdrop CMS module - malicious activity detected
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 21:53:19
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 17:53:14.792946 2026] [security2:error] [pid 20661:tid 20661] [client 172.174.157.134:14483] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||californiastarsfarm.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "californiastarsfarm.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akbdym3Ym-6v-TppJOPuywAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 21:28:35
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 17:28:29.077174 2026] [security2:error] [pid 2895:tid 2895] [client 172.174.157.134:15167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||circleinthesquare.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "circleinthesquare.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "akbX_Xaf2hV8FXaV3ss_LQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
findlab
2026-07-02 21:15:01
(3 days ago)
Backdrop CMS module - malicious activity detected
Bad Web Bot
Web App Attack
๐จ๐ฆ
Dolphi
2026-07-02 21:10:02
(3 days ago)
Excessive POST /xmlrpc.php requests
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 21:04:28
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 17:04:22.383450 2026] [security2:error] [pid 11032:tid 11032] [client 172.174.157.134:14291] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mydobdate.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mydobdate.net"] [uri "/wp-json/wp/v2/users/"] [unique_id "akbSVpixu2CvKA6wujWPpQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
F242
2026-07-02 21:02:52
(3 days ago)
Wordpress Login or XMLRPC abuse
Web App Attack
Anonymous
2026-07-02 21:02:52
(3 days ago)
Bad Web Bot
Web App Attack
Anonymous
2026-07-02 20:56:10
(3 days ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-02 20:46:08
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 16:46:00.801935 2026] [security2:error] [pid 19876:tid 19876] [client 172.174.157.134:14566] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||osmanbozkurt.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "osmanbozkurt.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akbOCMFVWEI6_hUp9DJTRAAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-02 20:25:58
(3 days ago)
(wordpress) Failed wordpress login from 172.174.157.134 (US/United States/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-02 20:22:56
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 16:22:51.361691 2026] [security2:error] [pid 15879:tid 15881] [client 172.174.157.134:13644] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||vcschief.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vcschief.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "akbImwlb3MUgXyRIVE-U0QAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 20:02:32
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 172.174.157.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 16:02:27.381850 2026] [security2:error] [pid 13706:tid 13706] [client 172.174.157.134:14787] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||flymarlin.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "flymarlin.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akbD01I2VUppKY82SlIyDwAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack