๐บ๐ธ
TPI-Abuse
2026-07-01 08:01:02
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): ...
show more
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 04:00:56.794714 2026] [security2:error] [pid 10262:tid 10262] [client 82.165.87.252:43132] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||sneedvillefarmersmarket.daisydoesoap.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sneedvillefarmersmarket.daisydoesoap.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akTJOPYCscHI1LwGLRQOGgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 17:36:43
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): ...
show more
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 13:36:37.586412 2026] [security2:error] [pid 6365:tid 6365] [client 82.165.87.252:39384] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||brbvip.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brbvip.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akKtJT36gLflXMHezLqgEgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 09:40:06
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): ...
show more
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 05:40:00.938198 2026] [security2:error] [pid 16554:tid 16554] [client 82.165.87.252:36872] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||brainstormer.soy|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brainstormer.soy"] [uri "/wp-json/wp/v2/users/2"] [unique_id "akI9cCVHQCnj7o4RxwCvFAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 09:20:39
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): ...
show more
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 05:20:36.120660 2026] [security2:error] [pid 2824:tid 2824] [client 82.165.87.252:35676] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||twogocamping.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "twogocamping.com"] [uri "/wp-json/wp/v2/users/4"] [unique_id "akI45LcwLQxdwHzC_uwY9gAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 06:32:35
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): ...
show more
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 02:32:30.356556 2026] [security2:error] [pid 4201:tid 4239] [client 82.165.87.252:56666] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||chelseyrae.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "chelseyrae.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akIRfmLyLOW_vljovPdFxgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-25 21:11:20
(1 week ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ญ๐บ
bcsaba
2026-06-22 10:14:36
(1 week ago)
No wp here:
82.165.87.252 - - [22/Jun/2026:12:14:35 +0200] "GET /wp/xmlrpc.php HTTP/2.0" 400 632 "-" ...
show more
No wp here:
82.165.87.252 - - [22/Jun/2026:12:14:35 +0200] "GET /wp/xmlrpc.php HTTP/2.0" 400 632 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
show less
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-06-20 04:18:40
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 00:10:33
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): ...
show more
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 20:10:25.738647 2026] [security2:error] [pid 3834:tid 3834] [client 82.165.87.252:52618] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||takeapawsboston.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "takeapawsboston.com"] [uri "/wp-json/wp/v2/users/9"] [unique_id "ajXacf0F0JqkGVR8oBWkWQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-19 02:47:52
(2 weeks ago)
(modsec_5040) ModSec 5040: API Basic Auth blocked from 82.165.87.252 (DE/Germany/infongwp-eu86.clien ...
show more
(modsec_5040) ModSec 5040: API Basic Auth blocked from 82.165.87.252 (DE/Germany/infongwp-eu86.clienthosting.eu): 1 in the last 3600 secs (0-196)
show less
Hacking
๐ฉ๐ช
FeG Deutschland
2026-06-19 01:34:55
(2 weeks ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
Exploited Host
Web App Attack
๐ฒ๐น
Malta
2026-06-15 08:05:55
(2 weeks ago)
82.165.87.252 - - [15/Jun/2026:10:05:55 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Windows NT ...
show more
82.165.87.252 - - [15/Jun/2026:10:05:55 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
๐ซ๐ท
masterguru
2026-06-14 10:15:41
(2 weeks ago)
(modsec_5040) ModSec 5040: API Basic Auth blocked from 82.165.87.252 (DE/Germany/infongwp-eu86.clien ...
show more
(modsec_5040) ModSec 5040: API Basic Auth blocked from 82.165.87.252 (DE/Germany/infongwp-eu86.clienthosting.eu): 1 in the last 3600 secs (0-196)
show less
Hacking
Anonymous
2026-06-13 00:56:13
(2 weeks ago)
2026-06-13T02:56:12.192794+02:00 aion wordpress[261105]: Blocked user enumeration attempt from 82.16 ...
show more
2026-06-13T02:56:12.192794+02:00 aion wordpress[261105]: Blocked user enumeration attempt from 82.165.87.252
...
show less
Hacking
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-12 09:09:27
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): ...
show more
(mod_security) mod_security (id:225170) triggered by 82.165.87.252 (infongwp-eu86.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 05:09:21.853187 2026] [security2:error] [pid 30983:tid 30983] [client 82.165.87.252:59866] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jessicalevant.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jessicalevant.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aivMwRS89LBXKAtnBhHutgAAAA0"], referer: https://jessicalevant.com/
show less
Brute-Force
Bad Web Bot
Web App Attack