๐ฒ๐น
Malta
2026-06-30 23:06:56
(3 hours ago)
185.208.164.63 - - [01/Jul/2026:01:06:56 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; CrO ...
show more
185.208.164.63 - - [01/Jul/2026:01:06:56 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
๐ฉ๐ช
AlexEventfahrtenIPDB
2026-06-30 14:27:21
(11 hours ago)
[Tue Jun 30 16:27:20.190155 2026] [authz_core:error] [pid 2514400:tid 2514400] [client 185.208.164.6 ...
show more
[Tue Jun 30 16:27:20.190155 2026] [authz_core:error] [pid 2514400:tid 2514400] [client 185.208.164.63:46508] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php
[Tue Jun 30 16:27:20.904277 2026] [authz_core:error] [pid 2510762:tid 2510762] [client 185.208.164.63:46518] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://alex-eventfahrten.spdns.de/wp-login.php
...
show less
Brute-Force
Web App Attack
Anonymous
2026-06-30 13:42:00
(12 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
nyt
2026-06-30 13:06:29
(13 hours ago)
WP login POST blocked by WAF, WP Author Enumeration
Brute-Force
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-06-30 10:13:23
(16 hours ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 12:03:50
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 08:03:43.327597 2026] [security2:error] [pid 4086:tid 4105] [client 185.208.164.63:43906] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.landmarkaesthetics.landmarkocchealth.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.landmarkaesthetics.landmarkocchealth.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akJfH8pr3j1Hde2SBCRWVwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 07:37:15
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 03:37:11.992791 2026] [security2:error] [pid 27729:tid 27729] [client 185.208.164.63:50888] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||furbabieslivesmatter.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "furbabieslivesmatter.com"] [uri "/wp-json/wp/v2/users/9"] [unique_id "akIgpyuqppyco12Bi3FHUAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 07:07:47
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 03:07:39.659653 2026] [security2:error] [pid 28922:tid 28922] [client 185.208.164.63:37306] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||certifiedfarmersmarkets.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "certifiedfarmersmarkets.org"] [uri "/wp-json/wp/v2/users/5"] [unique_id "akIZu0Yby5Y99y0M2fjJZwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 06:18:24
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 02:18:17.473973 2026] [security2:error] [pid 20674:tid 20674] [client 185.208.164.63:59636] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||directcch.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "directcch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akIOKRUUvGZEj9MQku6asgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 04:36:36
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:36:33.320671 2026] [security2:error] [pid 26012:tid 26012] [client 185.208.164.63:40736] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||artizandecor.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "artizandecor.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akH2UVNk9KhFJ8Uo7WWM0gAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 02:50:42
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 22:50:35.267237 2026] [security2:error] [pid 30462:tid 30462] [client 185.208.164.63:33804] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||doreenkimura.com.misscharlottemusic.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "doreenkimura.com.misscharlottemusic.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akHde97815AHls6nf3_snwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 23:13:44
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 19:13:41.024103 2026] [security2:error] [pid 15270:tid 15270] [client 185.208.164.63:55352] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||wsffjatc.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wsffjatc.org"] [uri "/wp-json/wp/v2/users"] [unique_id "akGqpcL8T-sUSncRoo5M3QAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 22:19:27
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 18:19:20.112338 2026] [security2:error] [pid 18066:tid 18066] [client 185.208.164.63:53344] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||femmefire.vanemby.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "femmefire.vanemby.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akGd6DOwk_thVoKLktfnZQAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 21:23:59
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 17:23:56.617186 2026] [security2:error] [pid 23179:tid 23179] [client 185.208.164.63:54916] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||proyectando.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "proyectando.com"] [uri "/wp-json/wp/v2/users/2"] [unique_id "akGQ7B-mlGz2FDy__JE0xgAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 20:35:38
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 185.208.164.63 (s63.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 16:35:32.937376 2026] [security2:error] [pid 20972:tid 20972] [client 185.208.164.63:47360] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||puckerbikinis.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "puckerbikinis.com"] [uri "/wp-json/wp/v2/users/8"] [unique_id "akGFlC2yVb1PMgtK7Fi1cgAAAC8"]
show less
Brute-Force
Bad Web Bot
Web App Attack