๐บ๐ธ
TPI-Abuse
2026-07-07 02:23:28
(11 hours ago)
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 22:23:20.422263 2026] [security2:error] [pid 22557:tid 22557] [client 83.142.225.90:46884] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||brazilianbottom.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brazilianbottom.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akxjGHmIb2fz4r_OtAnNewAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-07-06 16:30:59
(21 hours ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ฒ๐น
Malta
2026-07-05 19:30:55
(1 day ago)
83.142.225.90 - - [05/Jul/2026:21:30:55 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Ubun ...
show more
83.142.225.90 - - [05/Jul/2026:21:30:55 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
Anonymous
2026-07-05 16:51:10
(1 day ago)
Web App Attack, Hacking
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 12:07:33
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 08:07:25.615001 2026] [security2:error] [pid 6181:tid 6181] [client 83.142.225.90:41034] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mrflatpeople.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mrflatpeople.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akpI_U6iNjdZLK5vuwk2wQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-07-05 04:17:45
(2 days ago)
Wordpress malicious attack:[octaxmlrpc]
Web App Attack
Anonymous
2026-07-04 14:46:49
(2 days ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-03 15:00:35
(3 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-07-03 04:21:48
(4 days ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 22:54:06
(4 days ago)
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 18:53:58.906881 2026] [security2:error] [pid 17837:tid 17837] [client 83.142.225.90:60490] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||rajabarber.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rajabarber.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akbsBvxwV1bWCNjrwqgNXwAAACo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฟ
ptlab
2026-07-02 08:45:10
(5 days ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
๐ฒ๐น
Malta
2026-07-01 00:15:31
(6 days ago)
83.142.225.90 - - [01/Jul/2026:02:15:31 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows N ...
show more
83.142.225.90 - - [01/Jul/2026:02:15:31 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-30 07:52:49
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 03:52:44.899880 2026] [security2:error] [pid 4353:tid 4361] [client 83.142.225.90:60258] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||41bravo.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "41bravo.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akN1zEqWrTlXb6hcIzss2wAAAEU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-29 21:58:07
(1 week ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 10:44:37
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 83.142.225.90 (01.rsel.cpanel.xssl.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 06:44:31.067625 2026] [security2:error] [pid 26677:tid 26677] [client 83.142.225.90:53558] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||convtek.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "convtek.com"] [uri "/wp-json/wp/v2/users/3"] [unique_id "akJMjyr-CrPJj24ZzqwlggAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack