๐ฌ๐ง
spamverify.com
2026-07-07 12:30:29
(6 days ago)
Honeypot Hit: WordPress Users
Web Spam
Blog Spam
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 08:11:09
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 04:11:02.416528 2026] [security2:error] [pid 8130:tid 8130] [client 195.78.66.65:46276] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||riedmannfamily.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "riedmannfamily.com"] [uri "/wp-json/wp/v2/users/5"] [unique_id "akjAFrrS_0fEqoAUvSrb4QAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-04 08:01:44
(1 week ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 04:57:09
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 00:57:03.690571 2026] [security2:error] [pid 12010:tid 12010] [client 195.78.66.65:44892] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||schlegelcreative.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "schlegelcreative.com"] [uri "/wp-json/wp/v2/users/5"] [unique_id "akiSn3nMEaL3fDthw6kUAgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nyt
2026-07-04 00:52:19
(1 week ago)
WP Author Enumeration, WP User Enumeration
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 17:17:41
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 13:17:34.608631 2026] [security2:error] [pid 6266:tid 6266] [client 195.78.66.65:46364] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||waterspell.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "waterspell.net"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akfurgTznAZ8mOovrGCsgwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 12:01:16
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 08:01:11.547046 2026] [security2:error] [pid 27478:tid 27478] [client 195.78.66.65:45218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||harvestfrc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "harvestfrc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akekhxQfV7CYLeNTpx6z4AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 10:22:15
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 06:22:10.922869 2026] [security2:error] [pid 19553:tid 19553] [client 195.78.66.65:59682] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||lovebuilds.kidswow.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lovebuilds.kidswow.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akeNUsGbdlLrTAvxN0atAQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 08:50:15
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:50:09.922096 2026] [security2:error] [pid 30072:tid 30072] [client 195.78.66.65:49726] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||grabagame.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grabagame.com"] [uri "/wp-json/wp/v2/users/5"] [unique_id "akd3wTQrwAIQDsruoUj1rAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-07-01 04:01:06
(1 week ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-29 04:18:03
(2 weeks ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 03:34:35
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 23:34:31.569508 2026] [security2:error] [pid 5707:tid 5728] [client 195.78.66.65:54192] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.store.emehache.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.store.emehache.com"] [uri "/wp-json/wp/v2/users/10"] [unique_id "akHnxz5Lcx3NnmLeeI6MwQAAAM4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 22:07:09
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 195.78.66.65 (s84.cyber-folks.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 18:07:01.763287 2026] [security2:error] [pid 29237:tid 29237] [client 195.78.66.65:39802] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||zerotaxlab.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "zerotaxlab.com"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akGbBTma8Hlq97pdCR7SbgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
ELYAZ
2026-05-03 06:25:47
(2 months ago)
(wordpress) Failed wordpress login from 195.78.66.65 (PL/Poland/s84.cyber-folks.pl): (CF_ENABLE)
Brute-Force
๐ฉ๐ช
Lino Project
2026-05-02 11:36:40
(2 months ago)
195.78.66.65 - - [02/May/2026:13:36:37 +0200] "GET /wp-login.php HTTP/2.0" 403 405 "-" "Mozilla/5.0 ...
show more
195.78.66.65 - - [02/May/2026:13:36:37 +0200] "GET /wp-login.php HTTP/2.0" 403 405 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 OPR/50.0.2762.67"
...
show less
Brute-Force
Bad Web Bot
Web App Attack