๐ซ๐ท
alpha
2026-07-05 02:43:12
(1 day ago)
Automated honeypot: scanner probed decoy URL on cdn.aldorand.fr (honeypot decoy)
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2026-07-05 00:01:12
(1 day ago)
Repeated attacks detected by Fail2Ban in recidive jail
Hacking
๐ซ๐ท
SpaceHost-Server
2026-07-04 22:32:46
(1 day ago)
Brute-Force
Web App Attack
๐ฌ๐ง
BRHosting
2026-07-04 22:08:02
(1 day ago)
Wordpress brute force attack for login credentials (eg xmlrc.php or wp-login.php)
Brute-Force
Web App Attack
๐ซ๐ท
tecnicorioja
2026-07-04 22:01:01
(1 day ago)
wp-login attack [04/Jul/2026:22:41:52
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 21:03:46
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 43.129.54.214 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 43.129.54.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 17:03:39.671438 2026] [security2:error] [pid 22126:tid 22126] [client 43.129.54.214:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mail.rodrigoaldecoa.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.rodrigoaldecoa.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akl1K85kAIBKzz22Cm4z3gAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
spamverify.com
2026-07-04 20:57:46
(1 day ago)
Honeypot Hit: WordPress Users
Web Spam
Blog Spam
Bad Web Bot
Web App Attack
๐ฉ๐ช
wpadm4
2026-07-04 19:57:40
(1 day ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-04 19:10:34
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27
Exploited Host
Web App Attack
๐บ๐ธ
Ghost Rider
2026-07-04 19:08:40
(1 day ago)
RdpGuard detected brute-force attempt on RDP
Brute-Force
๐จ๐ฟ
huginet
2026-07-04 19:00:31
(1 day ago)
43.129.54.214 - - [04/Jul/2026:21:00:26 +0200] "GET /wp-login.php HTTP/1.1" 200 9112 "-" "Mozilla/5. ...
show more
43.129.54.214 - - [04/Jul/2026:21:00:26 +0200] "GET /wp-login.php HTTP/1.1" 200 9112 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
43.129.54.214 - - [04/Jul/2026:21:00:30 +0200] "POST /wp-login.php HTTP/1.1" 200 9549 "https://centrum-eko-likvidace.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
...
show less
Web Spam
Blog Spam
Hacking
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-04 14:38:02
(2 days ago)
(modsec_5040) ModSec 5040: API Basic Auth blocked from 43.129.54.214 (ID/Indonesia/-): 1 in the last ...
show more
(modsec_5040) ModSec 5040: API Basic Auth blocked from 43.129.54.214 (ID/Indonesia/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐ฎ๐ช
Jim Keir
2026-07-04 13:31:00
(2 days ago)
2026-07-04 13:30:59 43.129.54.214 File scanning, blocking 43.129.54.214 for 5 minutes
Web App Attack
๐ฉ๐ช
Marc
2026-07-04 13:27:31
(2 days ago)
43.129.54.214 - - [04/Jul/2026:12:30:18 +0200] "GET /wp-login.php HTTP/2.0" 200 3328 "-" "Mozilla/5. ...
show more
43.129.54.214 - - [04/Jul/2026:12:30:18 +0200] "GET /wp-login.php HTTP/2.0" 200 3328 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 43.129.54.214 - - [04/Jul/2026:12:30:20 +0200] "POST /wp-login.php HTTP/2.0" 200 3240 "https://fachanwaelte-iserlohn.de/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 43.129.54.214 - - [04/Jul/2026:13:03:17 +0200] "GET /wp-login.php HTTP/2.0" 200 3468 "-" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 43.129.54.214 - - [04/Jul/2026:15:27:27 +0200] "GET /wp-login.php HTTP/2.0" 200 3969 "-" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 43.129.54.214 - - [04/Jul/2026:15:27:29 +0200] "POST /wp-login.php HTTP/2.0" 200 4641 "https://www.bente-personaldienstleistung.de/wp-login.php" "Mozilla/5.0
show less
Brute-Force
Web App Attack
๐จ๐ฆ
KIsmay
2026-07-04 13:21:38
(2 days ago)
Jul 4 08:25:32 www4 WPAudit[203819]: 43.129.54.214 katharinedickerson.com "Mozilla/5.0 (X11; Linux ...
show more
Jul 4 08:25:32 www4 WPAudit[203819]: 43.129.54.214 katharinedickerson.com "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" katharinedickerson:Katharinedickerson1@ FAIL
Jul 4 08:25:59 www4 WPAudit[203966]: 43.129.54.214 ouchiaccounting.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" bwouchi:test FAIL
Jul 4 08:59:29 www4 WPAudit[203997]: 43.129.54.214 www.siscobc.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" sbd-admin:123123 FAIL
Jul 4 09:05:48 www4 WPAudit[206605]: 43.129.54.214 www.lemoncreekcampground.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" lemoncreek:hotrolemoncreek123 FAIL
Jul 4 09:21:36 www4 WPAudit[207966]: 43.129.54.214 arcrightplumbingandheating.com "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0
...
show less
Brute-Force
Web App Attack