๐ฒ๐น
Malta
2026-07-02 01:35:18
(6 hours ago)
192.250.229.40 - - [02/Jul/2026:03:35:18 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ...
show more
192.250.229.40 - - [02/Jul/2026:03:35:18 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
show less
Hacking
Web App Attack
๐ซ๐ท
ingroscart.it
2026-07-02 01:27:21
(6 hours ago)
(wordpress) Failed wordpress login from 192.250.229.40 (DE/Germany/Hesse/Frankfurt am Main/s2912.fra ...
show more
(wordpress) Failed wordpress login from 192.250.229.40 (DE/Germany/Hesse/Frankfurt am Main/s2912.fra1.stableserver.net/[redacted])
show less
Brute-Force
๐บ๐ธ
nationaleventpros.com
2026-07-01 05:45:31
(1 day ago)
WordPress login attempt
Brute-Force
๐ฉ๐ช
ger-stg-sifi1
2026-06-30 12:48:18
(1 day ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
neckaralb-admin.de
2026-06-30 06:09:50
(2 days ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ฒ๐น
Malta
2026-06-30 04:40:34
(2 days ago)
192.250.229.40 - - [30/Jun/2026:06:40:34 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ...
show more
192.250.229.40 - - [30/Jun/2026:06:40:34 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-29 11:47:42
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 07:47:35.716469 2026] [security2:error] [pid 17782:tid 17782] [client 192.250.229.40:35158] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||uphillfarmvt.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "uphillfarmvt.com"] [uri "/wp-json/wp/v2/users/10"] [unique_id "akJbV1TkDnN1V72EZPZK2QAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 09:53:48
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 05:53:42.992970 2026] [security2:error] [pid 9054:tid 9054] [client 192.250.229.40:54838] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||godcanuseyou.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "godcanuseyou.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akJAptw-99VEAkQWivz-xAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 09:08:27
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 05:08:23.576280 2026] [security2:error] [pid 29504:tid 29536] [client 192.250.229.40:44718] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jpdesign.us.jean-paullederer.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jpdesign.us.jean-paullederer.com"] [uri "/wp-json/wp/v2/users/4"] [unique_id "akI2B9lePZt9oqSU4jElrAAAAUQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-29 06:24:44
(3 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 04:43:23
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:43:17.943182 2026] [security2:error] [pid 3123:tid 3192] [client 192.250.229.40:44644] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||tapas.soluciona.biz|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tapas.soluciona.biz"] [uri "/wp-json/wp/v2/users/6"] [unique_id "akH35Zi93YQeiq3BMmKC2wAAAE8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 02:51:22
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 22:51:15.363211 2026] [security2:error] [pid 3805:tid 3805] [client 192.250.229.40:34386] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ontimelogistiks.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ontimelogistiks.com"] [uri "/wp-json/wp/v2/users/3"] [unique_id "akHdo0UO0Nkl1SFxs14QmQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 02:13:16
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 22:13:10.714979 2026] [security2:error] [pid 5652:tid 5652] [client 192.250.229.40:56500] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||miroconsulting.es|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "miroconsulting.es"] [uri "/wp-json/wp/v2/users"] [unique_id "akHUtvdBWb7MTmsnXCnJpAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 01:12:11
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 21:12:05.674985 2026] [security2:error] [pid 7818:tid 7818] [client 192.250.229.40:41932] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||souldata.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "souldata.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akHGZRVD9-kbboz6DiPJGQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 00:46:56
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 ...
show more
(mod_security) mod_security (id:225170) triggered by 192.250.229.40 (s2912.fra1.stableserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 20:46:52.713710 2026] [security2:error] [pid 11959:tid 11959] [client 192.250.229.40:42834] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||yogawithbubba.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "yogawithbubba.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akHAfBccQ_KG84tKYQ43AwAAADk"]
show less
Brute-Force
Bad Web Bot
Web App Attack