๐ฒ๐ฝ
octageeks.com
2026-07-01 04:18:45
(13 hours ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-06-30 13:15:22
(1 day ago)
WordPress bruteforce
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
Anonymous
2026-06-30 07:48:06
(1 day ago)
Bot / scanning and/or hacking attempts: [2/2] done, GET /wp-login.php HTTP/2.0, POST /wp-login.php H ...
show more
Bot / scanning and/or hacking attempts: [2/2] done, GET /wp-login.php HTTP/2.0, POST /wp-login.php HTTP/2.0
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 06:52:08
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 02:52:05.034902 2026] [security2:error] [pid 29309:tid 29309] [client 80.85.153.64:37596] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bronislawsuchanek.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bronislawsuchanek.com"] [uri "/wp-json/wp/v2/users/5"] [unique_id "akIWFQX8EcGn2Vgx8oqM7gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 05:07:02
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 01:06:55.852152 2026] [security2:error] [pid 13343:tid 13343] [client 80.85.153.64:56088] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||asociacioncopan.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "asociacioncopan.org"] [uri "/wp-json/wp/v2/users"] [unique_id "akH9bwfPrMghP6-jl5oFvAAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 04:32:12
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:32:05.387549 2026] [security2:error] [pid 3928:tid 3928] [client 80.85.153.64:43398] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||pcga.golf|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pcga.golf"] [uri "/wp-json/wp/v2/users"] [unique_id "akH1Ra5Ryb3l7SVMRlIdMAAAAFg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 04:06:55
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:06:49.937956 2026] [security2:error] [pid 4220:tid 4220] [client 80.85.153.64:37694] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||coolerboxes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "coolerboxes.com"] [uri "/wp-json/wp/v2/users/5"] [unique_id "akHvWZFC9s62uxVXcHtMOQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ด
jad-abuse
2026-06-29 03:28:24
(2 days ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: xmlrpc. O ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: xmlrpc. Observed by 1 sensor(s); 1 hits.
show less
Brute-Force
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-06-29 02:47:50
(2 days ago)
Try to access /wp/xmlrpc.php
Web App Attack
๐บ๐ธ
xxkodedxx
2026-06-29 02:34:30
(2 days ago)
[Zorvexus edge-defense] GET .env / WordPress honeypot probe
Trigger: 1ร honeypot-get in 10m window.
...
show more
[Zorvexus edge-defense] GET .env / WordPress honeypot probe
Trigger: 1ร honeypot-get in 10m window.
Active: 02:34:08 UTC
Volume: 1 honeypot probe(s)
Bait taken: /wp-json/wp/v2/users/10?_fields=id,slug,roles
Vhost fishing: cards.zvxlabs.com
UA: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
Auto-banned 30d. zorvexus-banner.
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 02:08:30
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 22:08:22.438135 2026] [security2:error] [pid 6868:tid 6868] [client 80.85.153.64:40408] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||benchmarkbcs.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "benchmarkbcs.com"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akHTloMgBgICZqJ09HqnOgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 00:54:09
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 20:54:01.375023 2026] [security2:error] [pid 17460:tid 17460] [client 80.85.153.64:47792] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||lajoze.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lajoze.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "akHCKTgKheDqSbtqd_MsGAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 23:23:08
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 19:23:03.962472 2026] [security2:error] [pid 31520:tid 31545] [client 80.85.153.64:39720] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gilesrentalcars.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gilesrentalcars.com"] [uri "/wp-json/wp/v2/users/6"] [unique_id "akGs1yiCKko5EeBqCln9XwAAAFc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 22:19:48
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 18:19:45.149020 2026] [security2:error] [pid 11914:tid 11914] [client 80.85.153.64:35332] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||calvaryadminservices.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "calvaryadminservices.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akGeARHzPDH6r8imUJml6wAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 21:31:59
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 3 ...
show more
(mod_security) mod_security (id:225170) triggered by 80.85.153.64 (hostingcare.pro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 17:31:53.338392 2026] [security2:error] [pid 22478:tid 22478] [client 80.85.153.64:49888] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||master.chinookdrivingacademy.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "master.chinookdrivingacademy.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akGSycfWsb4RXRmyDdnhVgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack