๐ฉ๐ช
tentwentyfour
2026-07-06 11:23:36
(2 minutes ago)
Blocked for brute-forcing WordPress log-in
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 10:30:56
(55 minutes ago)
(mod_security) mod_security (id:225170) triggered by 45.55.65.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 45.55.65.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 06:30:51.920025 2026] [security2:error] [pid 11682:tid 11682] [client 45.55.65.84:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.southernbroadcast.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.southernbroadcast.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akuD23hpu3dHeFStnP_iywAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
brechtr
2026-07-06 10:26:04
(1 hour ago)
[Press84-BanHammer] bad username โ Sourced from: www.langsvlaamsewegen.be โ Request: POST /wp-login. ...
show more
[Press84-BanHammer] bad username โ Sourced from: www.langsvlaamsewegen.be โ Request: POST /wp-login.php
show less
Brute-Force
๐ซ๐ท
tilellit.pro
2026-07-06 09:51:14
(1 hour ago)
Malicious web traffic detected by CrowdSec
Hacking
๐บ๐ธ
kosada.com
2026-07-06 09:24:54
(2 hours ago)
Web vulnerability probing: /wp-includes/wp-json/wp/v2/users/me
Web App Attack
๐ฌ๐ง
SCLwebadministrator
2026-07-06 09:14:00
(2 hours ago)
Bruteforce WordPress logins detected with Loginizer
Brute-Force
Web App Attack
Hacking
๐ฒ๐พ
Rizzy
2026-07-06 07:56:07
(3 hours ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 07:40:46
(3 hours ago)
(mod_security) mod_security (id:225170) triggered by 45.55.65.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 45.55.65.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 03:40:40.296034 2026] [security2:error] [pid 20609:tid 20609] [client 45.55.65.84:51362] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||dungeonsremastered.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dungeonsremastered.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aktb-Exq2F1K9ysrGMVe0gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
n2nguyenn2nguyen
2026-07-06 06:35:07
(4 hours ago)
Blocked by YFC Security on https://parcl9.com โ type: xmlrpc_attempts
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 06:13:54
(5 hours ago)
(mod_security) mod_security (id:225170) triggered by 45.55.65.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 45.55.65.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 02:13:51.800925 2026] [security2:error] [pid 29793:tid 29803] [client 45.55.65.84:54540] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||artmarialeon.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "artmarialeon.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aktHn9ZFD_hhGEm92bg5TQAAAEc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
BRHosting
2026-07-06 06:10:02
(5 hours ago)
Wordpress brute force attack for login credentials (eg xmlrc.php or wp-login.php)
Brute-Force
Web App Attack
๐จ๐ฆ
KIsmay
2026-07-06 05:28:42
(5 hours ago)
Jul 5 21:51:51 www4 WPAudit[381222]: 45.55.65.84 www.bestnelson.org "Mozilla/5.0 (Macintosh; Intel ...
show more
Jul 5 21:51:51 www4 WPAudit[381222]: 45.55.65.84 www.bestnelson.org "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" katietabor-developer:@katietabor-developer FAIL
Jul 5 22:40:44 www4 WPAudit[381679]: 45.55.65.84 www.servicesfyi.ca "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" servicesfyi:Servicesfyi@12 FAIL
Jul 6 01:16:08 www4 WPAudit[391144]: 45.55.65.84 valhallasafety.com "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" valhalla:Valhalla123. FAIL
Jul 6 01:23:37 www4 WPAudit[395479]: 45.55.65.84 lemoncreekcampground.ca "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" sbd-admin:sbd-admin02 FAIL
Jul 6 01:28:41 www4 WPAudit[394837]: 45.55.65.84 www.servicesfyi.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.
...
show less
Brute-Force
Web App Attack
Anonymous
2026-07-06 05:19:58
(6 hours ago)
<jail> banned by fail2ban
Brute-Force
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-06 05:06:26
(6 hours ago)
WordPress bruteforce
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐ซ๐ท
LRob
2026-07-06 05:05:21
(6 hours ago)
CrowdSec: lrob/wp-login-slow-bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (Windows NT 10.0; Win64 ...
show more
CrowdSec: lrob/wp-login-slow-bf | req: ["/wp-login.php"] | UA: ["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36","Mozilla/5.0 (Macintosh; Intel Mac
show less
Brute-Force
Web App Attack