๐ฒ๐ฝ
octageeks.com
2026-07-02 04:22:25
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ฉ๐ช
neckaralb-admin.de
2026-07-01 11:56:22
(2 weeks ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 10:20:56
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 195.179.230.157 (vmi2625524.contaboserver.net): ...
show more
(mod_security) mod_security (id:225170) triggered by 195.179.230.157 (vmi2625524.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 06:20:52.648397 2026] [security2:error] [pid 29945:tid 29945] [client 195.179.230.157:45398] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||globaldentalservices.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "globaldentalservices.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akTqBD-SRh4hEtMVp7g-MQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-07-01 10:06:45
(2 weeks ago)
Abuse Detected (4)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 09:15:08
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 195.179.230.157 (vmi2625524.contaboserver.net): ...
show more
(mod_security) mod_security (id:225170) triggered by 195.179.230.157 (vmi2625524.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 05:14:59.534856 2026] [security2:error] [pid 1211:tid 1211] [client 195.179.230.157:43270] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.bradleybarefoot.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bradleybarefoot.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akTak90Af1faTUnZKNkSuwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
poundawebsiteltd
2026-07-01 09:14:59
(2 weeks ago)
WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 195.179.230.157 - - [01/Jul/2026:10:14:53 +0100] ...
show more
WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 195.179.230.157 - - [01/Jul/2026:10:14:53 +0100] POST /wp-login.php HTTP/2.0 200 5415 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0
show less
Web App Attack
๐จ๐ฟ
ptlab
2026-07-01 06:45:24
(2 weeks ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
๐ฆ๐บ
FireGuard Server
2026-07-01 06:25:07
(2 weeks ago)
Blocked by os-abuseipdb; 4 hits, proto=tcp, ports=443
Port Scan
Hacking
๐บ๐ธ
lostswordfish.com
2026-07-01 05:50:06
(2 weeks ago)
Wordfence waf block on madesimpleskincare
Web App Attack
๐ฉ๐ช
Hazzard
2026-07-01 05:28:26
(2 weeks ago)
(wordpress) Failed wordpress login from 195.179.230.157 (DE/Germany/Baden-Wurttemberg/Karlsruhe/vmi2 ...
show more
(wordpress) Failed wordpress login from 195.179.230.157 (DE/Germany/Baden-Wurttemberg/Karlsruhe/vmi2625524.contaboserver.net/[redacted]): (CF_ENABLE)
show less
Brute-Force
๐บ๐ธ
nationaleventpros.com
2026-07-01 05:26:13
(2 weeks ago)
WordPress login attempt
Brute-Force
๐ซ๐ท
ingroscart.it
2026-07-01 05:02:34
(2 weeks ago)
(wordpress) Failed wordpress login from 195.179.230.157 (DE/Germany/Baden-Wurttemberg/Karlsruhe/vmi2 ...
show more
(wordpress) Failed wordpress login from 195.179.230.157 (DE/Germany/Baden-Wurttemberg/Karlsruhe/vmi2625524.contaboserver.net/[redacted])
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-01 05:00:20
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 195.179.230.157 (vmi2625524.contaboserver.net): ...
show more
(mod_security) mod_security (id:225170) triggered by 195.179.230.157 (vmi2625524.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 01:00:14.612996 2026] [security2:error] [pid 1929:tid 1929] [client 195.179.230.157:35602] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gemco-mfg.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gemco-mfg.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akSe3kQO1BkjQ-IPNE75bAAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TAY
2026-07-01 04:54:40
(2 weeks ago)
195.179.230.157 - - [01/Jul/2026:12:45:52 +0800] "POST /wp-login.php HTTP/1.1" 200 2677 "https://mai ...
show more
195.179.230.157 - - [01/Jul/2026:12:45:52 +0800] "POST /wp-login.php HTTP/1.1" 200 2677 "https://mail.littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
195.179.230.157 - - [01/Jul/2026:12:53:47 +0800] "POST /wp-login.php HTTP/1.1" 200 2975 "https://autism-cvc.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
195.179.230.157 - - [01/Jul/2026:12:54:38 +0800] "POST /wp-login.php HTTP/1.1" 200 2981 "https://www.autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
...
show less
Brute-Force
๐ฒ๐น
Malta
2026-07-01 04:54:19
(2 weeks ago)
195.179.230.157 - - [01/Jul/2026:06:54:19 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Li ...
show more
195.179.230.157 - - [01/Jul/2026:06:54:19 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force