Anonymous
2026-07-14 13:20:08
(2 hours ago)
IP banned by Fail2Ban in jail nginx-abusive-ips
Web App Attack
Brute-Force
Bad Web Bot
Anonymous
2026-07-14 13:01:51
(2 hours ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-07-14 12:50:06
(2 hours ago)
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 08:50:01.947555 2026] [security2:error] [pid 25093:tid 25093] [client 178.128.96.70:50898] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.wp.hotpay.co|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.wp.hotpay.co"] [uri "/wp-json/wp/v2/users/"] [unique_id "alYweVZXzLxRNLbwMdSgLQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 12:32:49
(3 hours ago)
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 08:32:43.224584 2026] [security2:error] [pid 3623:tid 3623] [client 178.128.96.70:55910] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.wordpress.americanacademyofteachersofsinging.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wordpress.americanacademyofteachersofsinging.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "alYsa2AbJ0hJ_jwACoPMvAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-14 12:10:04
(3 hours ago)
(wordpress) Failed wordpress login from 178.128.96.70 (SG/Singapore/-)
Brute-Force
๐ฆ๐บ
Klaverstyn
2026-07-14 12:09:17
(3 hours ago)
Excessive HTTP request rate
Web App Attack
๐ฉ๐ช
konseptit
2026-07-14 12:00:39
(3 hours ago)
(wordpress) Failed wordpress login from 178.128.96.70 (SG/Singapore/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-14 11:49:21
(3 hours ago)
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 07:49:15.421012 2026] [security2:error] [pid 20837:tid 20837] [client 178.128.96.70:65370] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.whodatnation.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.whodatnation.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alYiO5vb_jvWl_GuCL_1AQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 11:24:42
(4 hours ago)
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 07:24:38.185496 2026] [security2:error] [pid 14123:tid 14123] [client 178.128.96.70:56759] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||staging.groovedoctors.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "staging.groovedoctors.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alYcdkB-6tS0GUIgxNljmwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WeekendWeb
2026-07-14 10:53:53
(4 hours ago)
Wordpress Vunerability attack
Web App Attack
๐จ๐ญ
zynex
2026-07-14 10:52:19
(4 hours ago)
URL Probing: /wp-includes/wlwmanifest.xml
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 10:48:16
(4 hours ago)
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 178.128.96.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 06:48:11.626032 2026] [security2:error] [pid 1279:tid 1279] [client 178.128.96.70:53488] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.weddingmusicguitar.benshermanguitar.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.weddingmusicguitar.benshermanguitar.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alYT6zcwof2Ylc1vVueRhgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-14 10:40:02
(4 hours ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ณ๐ฑ
wlt-blocker
2026-07-14 10:30:40
(5 hours ago)
Unauthorized access to webpage admin
Web App Attack
๐ฉ๐ช
Trueforce Threat Report
2026-07-14 10:15:01
(5 hours ago)
Automated report, trolling for resource vulnerabilities
Bad Web Bot
Web App Attack