π¨πΏ
ptlab
2026-07-11 12:45:34
(5 hours ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
πΊπΈ
lostswordfish.com
2026-07-05 18:56:02
(5 days ago)
Wordfence waf block on secure uv4sor
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-05 15:55:38
(6 days ago)
(mod_security) mod_security (id:225170) triggered by 216.222.198.186 (sh-cp29.lax2.servername.online ...
show more
(mod_security) mod_security (id:225170) triggered by 216.222.198.186 (sh-cp29.lax2.servername.online): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 11:55:32.053416 2026] [security2:error] [pid 4381:tid 4381] [client 216.222.198.186:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.pixacast.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.pixacast.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akp-dH7Ye_nxrPb3hQp-NwAAACQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Hazzard
2026-07-05 09:34:06
(6 days ago)
(wordpress) Failed wordpress login from 216.222.198.186 (US/United States/-/-/sh-cp29.lax2.servernam ...
show more
(wordpress) Failed wordpress login from 216.222.198.186 (US/United States/-/-/sh-cp29.lax2.servername.online/[redacted]): (CF_ENABLE)
show less
Brute-Force
πΊπΈ
TPI-Abuse
2026-07-04 07:44:04
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.222.198.186 (sh-cp29.lax2.servername.online ...
show more
(mod_security) mod_security (id:225170) triggered by 216.222.198.186 (sh-cp29.lax2.servername.online): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 03:44:01.691880 2026] [security2:error] [pid 23428:tid 23428] [client 216.222.198.186:37864] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jolankagroup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aki5waCQo6kqPU9VqnSnVwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-04 07:08:54
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.222.198.186 (sh-cp29.lax2.servername.online ...
show more
(mod_security) mod_security (id:225170) triggered by 216.222.198.186 (sh-cp29.lax2.servername.online): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 03:08:51.176957 2026] [security2:error] [pid 12609:tid 12609] [client 216.222.198.186:55140] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||fusteriafontane.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fusteriafontane.com"] [uri "/wp-json/wp/v2/users/6"] [unique_id "akixg0IPurnRmEIhbYS0_QAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π²π½
octageeks.com
2026-07-04 04:11:45
(1 week ago)
Wordpress malicious attack:[octawpauthor]
Web App Attack
π©πͺ
FeG Deutschland
2026-07-03 22:57:24
(1 week ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 14:26:11
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.222.198.186 (sh-cp29.lax2.servername.online ...
show more
(mod_security) mod_security (id:225170) triggered by 216.222.198.186 (sh-cp29.lax2.servername.online): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 10:26:05.574247 2026] [security2:error] [pid 30284:tid 30284] [client 216.222.198.186:56050] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||wc2023.renju.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wc2023.renju.net"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akfGfcC6RGwEP0XQ58OzOwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack