๐ซ๐ท
dynamix
2026-07-14 06:59:02
(7 hours ago)
Multiple WAF Violations
Web App Attack
๐ฌ๐ง
NotCool
2026-07-12 11:50:21
(2 days ago)
(XMLRPC) WP XMLPRC Attack 45.133.176.50 (TW/Taiwan/-): 50 in the last 3600 secs
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 05:52:28
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 45.133.176.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.133.176.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 01:52:24.391510 2026] [security2:error] [pid 26167:tid 26167] [client 45.133.176.50:38299] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.mainefirst.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.mainefirst.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "alMrmJ86l8HRQ5_Jw1y6dwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 22:10:36
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 45.133.176.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.133.176.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 18:10:33.552500 2026] [security2:error] [pid 3183:tid 3183] [client 45.133.176.50:56621] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bluemarineboats.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bluemarineboats.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alK_WSx0NjpmmNIRnb71AAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
YF
2026-07-11 18:31:15
(2 days ago)
Attaque distribuรฉe subnet
DDoS Attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 16:55:45
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 45.133.176.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.133.176.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 12:55:42.059893 2026] [security2:error] [pid 31651:tid 31651] [client 45.133.176.50:41577] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.pcga.golf|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.pcga.golf"] [uri "/wp-json/wp/v2/users/"] [unique_id "alJ1jpR_MA4J3ngb5bTAzAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
cwytech
2026-06-24 13:16:36
(2 weeks ago)
Fleet-wide ban from the Ghostfleet ๐ป. Triggered by scenario: cwy/wp-us-login-only-high.
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 20:20:48
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 45.133.176.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.133.176.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 16:20:43.734680 2026] [security2:error] [pid 24403:tid 24450] [client 45.133.176.50:29549] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.133.176.50 (+1 hits since last alert)|totheendsoftheearth.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "totheendsoftheearth.com"] [uri "/xmlrpc.php"] [unique_id "aisYm9C1dG46GlAghU174wAAAEw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-28 03:44:50
(2 months ago)
Credential Stuffing attacks against Microsoft 365
Brute-Force
๐ป๐ณ
hirosume2
2026-04-07 01:13:52
(3 months ago)
DDoS composite score 34.6 (challenge tier) - 5 reqs/5min - high_traffic
DDoS Attack
๐ป๐ณ
hirosume2
2026-04-07 00:54:22
(3 months ago)
DDoS composite score 34.6 (challenge tier) - 4 reqs/5min - high_traffic
DDoS Attack
๐ซ๐ท
dynamix
2026-02-18 08:14:40
(4 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
ipblock.com
2026-02-17 20:14:00
(4 months ago)
IPBlock protected site ID [4055-d][s=06].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
๐ท๐บ
sms.ru
2025-12-03 07:26:56
(7 months ago)
/wp-admin/admin-wolf.php
Web App Attack
Anonymous
2025-12-03 06:44:50
(7 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH