π¬π§
Apache
2026-07-09 15:42:48
(7 hours ago)
(mod_security) mod_security (id:240335) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 5 in ...
show more
(mod_security) mod_security (id:240335) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 5 in the last 300 secs
show less
Brute-Force
Web App Attack
πΏπ¦
maximonline.co.za
2026-07-09 06:07:17
(17 hours ago)
Brute Force IMAP AUTH Attack
Brute-Force
π©πͺ
4server
2026-07-08 15:58:55
(1 day ago)
[WedJul0817:58:49.6382592026][security2:error][pid2925692:tid2925761][client102.219.27.137:0]ModSecu ...
show more
[WedJul0817:58:49.6382592026][security2:error][pid2925692:tid2925761][client102.219.27.137:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"albertiarnaldoluigi.ch\"][uri\"/xmlrpc.php\"][unique_id\"ak5zuc8AR6v68PekjiKwXAAAAFY\"]
show less
Port Scan
Brute-Force
Web App Attack
π³π±
Site.eu
2026-07-08 13:40:01
(1 day ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
π³π±
wlt-blocker
2026-07-08 12:56:59
(1 day ago)
Unauthorized access to webpage admin
Web App Attack
π©πͺ
stinpriza
2026-07-08 09:11:26
(1 day ago)
Web App Attack
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-08 00:57:40
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 20:57:33.508858 2026] [security2:error] [pid 12086:tid 12086] [client 102.219.27.137:12771] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||appalachianfolkmagician.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "appalachianfolkmagician.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ak2gfVLfRCjk9ejh484P5QAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-07 14:54:19
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 10:54:13.582987 2026] [security2:error] [pid 17990:tid 17990] [client 102.219.27.137:53434] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||marinestorage.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "marinestorage.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ak0TFVr-OLBn1ib8Xrw7zgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-06 13:59:19
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 09:59:12.714395 2026] [security2:error] [pid 17994:tid 18008] [client 102.219.27.137:12744] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||aafm.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aafm.us"] [uri "/wp-json/wp/v2/users"] [unique_id "aku0sMkxw6-cyjadjhBqTQAAAQk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-04 13:15:37
(5 days ago)
Web attack blocked by Wordfence on www.museumvalkenburg.nl (1 hit). Reported by CRMON.
Web App Attack
π©πͺ
ger-stg-sifi1
2026-07-04 12:41:23
(5 days ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
π©πͺ
Hazzard
2026-07-02 16:35:49
(1 week ago)
(wordpress) Failed wordpress login from 102.219.27.137 (ZA/South Africa/Gauteng/Johannesburg/102-219 ...
show more
(wordpress) Failed wordpress login from 102.219.27.137 (ZA/South Africa/Gauteng/Johannesburg/102-219-27-137.vox.co.za/[redacted]): (CF_ENABLE)
show less
Brute-Force
πΊπΈ
WeekendWeb
2026-07-02 09:23:00
(1 week ago)
Wordpress Vunerability attack
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-01 17:33:49
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 102.219.27.137 (102-219-27-137.vox.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 13:33:44.866645 2026] [security2:error] [pid 12601:tid 12601] [client 102.219.27.137:53425] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||thefrontporchoffering.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "thefrontporchoffering.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akVPeMofBDnEXpqidXCpvAAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Holger
2026-07-01 12:37:36
(1 week ago)
WordPress WebAttack
Brute-Force
Web App Attack