๐บ๐ธ
xmission.com
2026-06-27 05:32:56
(1 week ago)
2600:3c00::f03c:91ff:fe44:a36d - - [26/Jun/2026:23:32:55 -0600] "POST /xmlrpc.php HTTP/1.1" 200 415 ...
show more
2600:3c00::f03c:91ff:fe44:a36d - - [26/Jun/2026:23:32:55 -0600] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐ฉ๐ช
LRob
2026-06-25 04:30:08
(1 week ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐บ๐ธ
factor1
2026-06-24 20:42:26
(1 week ago)
Fail2ban at churndash Reports Abuse.
Brute-Force
Web App Attack
๐ณ๐ฑ
Mangelot Hosting
2026-06-23 12:07:20
(2 weeks ago)
(wp_login_try) srv101 WP Login Attempt 2600:3c00::f03c:91ff:fe44:a36d (US/United States/-): 10 in th ...
show more
(wp_login_try) srv101 WP Login Attempt 2600:3c00::f03c:91ff:fe44:a36d (US/United States/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-23 08:45:46
(2 weeks ago)
Excessive 404/403 errors
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-23 05:25:57
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-17 ...
show more
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-175.cloudezapp.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 01:25:52.314621 2026] [security2:error] [pid 31002:tid 31012] [client 2600:3c00::f03c:91ff:fe44:a36d:39618] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||sandiegosamband.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sandiegosamband.com"] [uri "/WPpage/wp-json/wp/v2/users"] [unique_id "ajoY4BI-W0kpcvrPf3xUkAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
konseptit
2026-06-23 02:42:50
(2 weeks ago)
(wordpress) Failed wordpress login from 2600:3c00::f03c:91ff:fe44:a36d (US/United States/ip-66-228-4 ...
show more
(wordpress) Failed wordpress login from 2600:3c00::f03c:91ff:fe44:a36d (US/United States/ip-66-228-48-175.cloudezapp.io)
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-22 10:07:40
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-17 ...
show more
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-175.cloudezapp.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 06:07:36.581122 2026] [security2:error] [pid 19739:tid 19739] [client 2600:3c00::f03c:91ff:fe44:a36d:45674] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.wholesalelivelobsters.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.wholesalelivelobsters.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajkJaFIg0zHrs-zyYenW_AAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-20 22:30:05
(2 weeks ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 19:00:17
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-17 ...
show more
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-175.cloudezapp.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 15:00:10.794268 2026] [security2:error] [pid 1781:tid 1781] [client 2600:3c00::f03c:91ff:fe44:a36d:51484] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||doublenaughtspycar.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "doublenaughtspycar.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajbjOiextEGsBXR3EhLtGgAAAFk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 12:14:38
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-17 ...
show more
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-175.cloudezapp.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 08:14:33.074896 2026] [security2:error] [pid 8648:tid 8648] [client 2600:3c00::f03c:91ff:fe44:a36d:57858] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.justicehoward.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.justicehoward.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajUyqVsMe9HfGkjvLgky7QAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 13:31:18
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-17 ...
show more
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-175.cloudezapp.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 09:31:12.691351 2026] [security2:error] [pid 503:tid 503] [client 2600:3c00::f03c:91ff:fe44:a36d:60624] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.midway-island.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.midway-island.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajPzIFRGZiJJ6WgSMuz5EQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 19:38:59
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-17 ...
show more
(mod_security) mod_security (id:225170) triggered by 2600:3c00::f03c:91ff:fe44:a36d (ip-66-228-48-175.cloudezapp.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 15:38:51.896368 2026] [security2:error] [pid 8438:tid 8438] [client 2600:3c00::f03c:91ff:fe44:a36d:51632] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.arsenaultartistmanagement.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.arsenaultartistmanagement.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajGmS0Npe-Ww4oWJrT62NAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Mangelot Hosting
2026-06-15 20:07:06
(3 weeks ago)
(wp_login_try) srv102 WP Login Attempt 2600:3c00::f03c:91ff:fe44:a36d (US/United States/-): 10 in th ...
show more
(wp_login_try) srv102 WP Login Attempt 2600:3c00::f03c:91ff:fe44:a36d (US/United States/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-14 19:11:56
(3 weeks ago)
Excessive 404/403 errors
Brute-Force