๐ฉ๐ช
Vegascosmetics
2026-07-12 08:04:00
(2 hours ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security
DDoS Attack
Hacking
Exploited Host
Anonymous
2026-07-12 05:13:46
(5 hours ago)
<jail> banned by fail2ban
Brute-Force
Web App Attack
๐ฉ๐ช
LRob
2026-07-12 03:45:11
(6 hours ago)
CrowdSec: crowdsecurity/http-bf-wordpress_bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (X11; Ubun ...
show more
CrowdSec: crowdsecurity/http-bf-wordpress_bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36","Mozilla/5.0 (X11; Linux x86_64)
show less
Brute-Force
Web App Attack
๐ณ๐ฑ
Mangelot Hosting
2026-07-12 00:19:27
(10 hours ago)
(wp_login_try) srv104 WP Login Attempt 2002:d161:a1cb::d161:a1cb (US/United States/-): 10 in the las ...
show more
(wp_login_try) srv104 WP Login Attempt 2002:d161:a1cb::d161:a1cb (US/United States/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
Anonymous
2026-07-11 23:45:34
(10 hours ago)
(wordpress) Failed wordpress login from 209.97.161.203 (SG/Singapore/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-11 23:08:06
(11 hours ago)
(mod_security) mod_security (id:225170) triggered by 2002:d161:a1cb::d161:a1cb (Unknown): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 2002:d161:a1cb::d161:a1cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 19:08:03.574579 2026] [security2:error] [pid 24363:tid 24363] [client 2002:d161:a1cb::d161:a1cb:55329] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||adlc18.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "adlc18.org"] [uri "/wp-json/wp/v2/users"] [unique_id "alLM06VhvxxZt0LB52GkTQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Mangelot Hosting
2026-07-11 22:38:03
(11 hours ago)
(wp_login_try) srv101 WP Login Attempt 2002:d161:a1cb::d161:a1cb (US/United States/-): 10 in the las ...
show more
(wp_login_try) srv101 WP Login Attempt 2002:d161:a1cb::d161:a1cb (US/United States/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 22:30:22
(12 hours ago)
(mod_security) mod_security (id:225170) triggered by 2002:d161:a1cb::d161:a1cb (Unknown): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 2002:d161:a1cb::d161:a1cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 18:30:14.339822 2026] [security2:error] [pid 19388:tid 19388] [client 2002:d161:a1cb::d161:a1cb:52329] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||fuentevictoria.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fuentevictoria.com"] [uri "/wp-json/wp/v2/users"] [unique_id "alLD9u2rHDzY6vt48saliwAAABk"], referer: https://duckduckgo.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-11 22:28:42
(12 hours ago)
Brute-Force
Web App Attack
๐ฉ๐ช
LRob
2026-07-11 22:07:15
(12 hours ago)
CrowdSec: lrob/wp-login-slow-bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (Windows NT 10.0; Win64 ...
show more
CrowdSec: lrob/wp-login-slow-bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36","Mozilla/5.0 (Macintosh; Intel Mac
show less
Brute-Force
Web App Attack
๐ณ๐ฑ
MacLotsen
2026-07-11 21:42:27
(12 hours ago)
209.97.161.203 - - [11/Jul/2026:23:40:33 +0200] "POST /wp-login.php HTTP/1.1" 200 4106 "https://afke ...
show more
209.97.161.203 - - [11/Jul/2026:23:40:33 +0200] "POST /wp-login.php HTTP/1.1" 200 4106 "https://afkewiersma.nl/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15"
209.97.161.203 - - [11/Jul/2026:23:40:43 +0200] "POST /wp-login.php HTTP/1.1" 200 4105 "https://afkewiersma.nl/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36"
209.97.161.203 - - [11/Jul/2026:23:40:55 +0200] "POST /wp-login.php HTTP/1.1" 200 4104 "https://afkewiersma.nl/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36"
209.97.161.203 - - [11/Jul/2026:23:41:06 +0200] "POST /wp-login.php HTTP/1.1" 200 4101 "https://afkewiersma.nl/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0"
209.97.161.203 - - [11/Jul/2026:23:41:16 +0200] "POST /wp-
...
show less
Web App Attack
Brute-Force
๐ง๐ช
taivas.nl
2026-07-11 20:32:12
(14 hours ago)
Wordpress_login_attempts
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-11 19:05:38
(15 hours ago)
(mod_security) mod_security (id:225170) triggered by 2002:d161:a1cb::d161:a1cb (Unknown): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 2002:d161:a1cb::d161:a1cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 15:05:30.905850 2026] [security2:error] [pid 4567:tid 4575] [client 2002:d161:a1cb::d161:a1cb:54419] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||conservativelabor.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "conservativelabor.com"] [uri "/wp-json/wp/v2/users"] [unique_id "alKT-vVnWOZS0ugIlBKoXgAAAMY"], referer: https://www.google.com/search?q=wordpress
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฟ
ptlab
2026-07-11 18:45:17
(15 hours ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-11 18:35:31
(16 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247
Exploited Host
Web App Attack