๐ซ๐ท
tecnicorioja
2026-06-10 22:01:26
(2 weeks ago)
wp-login attack [10/Jun/2026:12:19:10
Brute-Force
Web App Attack
๐ฉ๐ช
YF
2026-06-10 11:00:13
(2 weeks ago)
WordPress author enumeration
Web App Attack
๐บ๐ธ
nyt
2026-06-10 10:49:47
(2 weeks ago)
Repeated WordPress login POSTs blocked by WAF (3 in 6h)
Brute-Force
Web App Attack
๐บ๐ธ
TAY
2026-06-10 09:51:39
(2 weeks ago)
195.246.120.70 - - [10/Jun/2026:17:44:42 +0800] "POST /wp-login.php HTTP/1.1" 200 2976 "https://www. ...
show more
195.246.120.70 - - [10/Jun/2026:17:44:42 +0800] "POST /wp-login.php HTTP/1.1" 200 2976 "https://www.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
195.246.120.70 - - [10/Jun/2026:17:44:48 +0800] "POST /wp-login.php HTTP/1.1" 200 2980 "https://autism-cvc.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
195.246.120.70 - - [10/Jun/2026:17:51:39 +0800] "POST /wp-login.php HTTP/1.1" 200 2974 "https://www.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0"
...
show less
Brute-Force
๐บ๐ธ
jormaster3k
2026-06-10 09:49:58
(2 weeks ago)
Attack against WordPress
Web App Attack
๐ซ๐ท
dynamix
2026-06-10 09:48:30
(2 weeks ago)
WordPress wp-login.php Brute Force Attack
Brute-Force
Web App Attack
๐ฌ๐ง
ISPLtd
2026-06-10 08:16:38
(2 weeks ago)
195.246.120.70 - - [10/Jun/2026:05:16:37 -0300] "GET /wp-login.php
195.246.120.70 - - [10/Jun/2026:0 ...
show more
195.246.120.70 - - [10/Jun/2026:05:16:37 -0300] "GET /wp-login.php
195.246.120.70 - - [10/Jun/2026:05:16:38 -0300] "POST /wp-login.php
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-10 07:45:22
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 195.246.120.70 (ghnpharma.com): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 195.246.120.70 (ghnpharma.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 03:45:16.283240 2026] [security2:error] [pid 29831:tid 29831] [client 195.246.120.70:46176] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||semisysteme.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "semisysteme.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aikWDB2hawPq-tds7FYZ6AAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-10 07:35:45
(2 weeks ago)
(modsec_5040) ModSec 5040: API Basic Auth blocked from 195.246.120.70 (SE/Sweden/ghnpharma.com): 1 i ...
show more
(modsec_5040) ModSec 5040: API Basic Auth blocked from 195.246.120.70 (SE/Sweden/ghnpharma.com): 1 in the last 3600 secs (0-196)
show less
Hacking
๐ฎ๐น
LTM
2026-06-10 06:20:01
(2 weeks ago)
WebServer - Attempts to exploit
Hacking
Brute-Force
Web App Attack
๐ฉ๐ช
Hazzard
2026-06-10 05:42:57
(2 weeks ago)
(wordpress) Failed wordpress login from 195.246.120.70 (SE/Sweden/Halland County/Falkenberg/ghnpharm ...
show more
(wordpress) Failed wordpress login from 195.246.120.70 (SE/Sweden/Halland County/Falkenberg/ghnpharma.com/[redacted]): (CF_ENABLE)
show less
Brute-Force
๐ฉ๐ช
Lino Project
2026-06-10 04:58:27
(2 weeks ago)
195.246.120.70 - - [10/Jun/2026:06:58:23 +0200] "GET /wp-login.php HTTP/2.0" 403 285 "-" "Mozilla/5. ...
show more
195.246.120.70 - - [10/Jun/2026:06:58:23 +0200] "GET /wp-login.php HTTP/2.0" 403 285 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-10 04:53:49
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 195.246.120.70 (ghnpharma.com): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 195.246.120.70 (ghnpharma.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 00:53:42.349068 2026] [security2:error] [pid 12303:tid 12303] [client 195.246.120.70:59386] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||reelvisionboard.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "reelvisionboard.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aijt1gJYGQBrnsvNDWQD4QAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-06-10 04:43:52
(2 weeks ago)
Wordpress malicious attack:[octawp]
Web App Attack
๐ฌ๐ง
ISPLtd
2026-06-10 04:20:12
(2 weeks ago)
195.246.120.70 - - [10/Jun/2026:01:20:11 -0300] "GET /wp-login.php
195.246.120.70 - - [10/Jun/2026:0 ...
show more
195.246.120.70 - - [10/Jun/2026:01:20:11 -0300] "GET /wp-login.php
195.246.120.70 - - [10/Jun/2026:01:20:11 -0300] "POST /wp-login.php
...
show less
Hacking
Web App Attack