๐บ๐ธ
TPI-Abuse
2026-07-02 19:13:14
(6 days ago)
(mod_security) mod_security (id:225170) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 15:13:09.206787 2026] [security2:error] [pid 6561:tid 6561] [client 103.227.224.96:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||atlascoombs.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "atlascoombs.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aka4RfGT-4n5DCj-t_pjXQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 18:33:15
(6 days ago)
(mod_security) mod_security (id:225170) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 14:33:10.589488 2026] [security2:error] [pid 12471:tid 12471] [client 103.227.224.96:48894] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bassboatmagazine.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bassboatmagazine.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akau5j9DqfkH8YdK-L0kCAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 03:48:48
(1 week ago)
(mod_security) mod_security (id:949110) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:949110) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 23:48:43.089338 2026] [security2:error] [pid 26164:tid 26164] [client 103.227.224.96:40084] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.ugandaconnection.com"] [uri "/contact/"] [unique_id "akSOG82Y3PtwXT7_Z8VCdgAAAAk"], referer: https://www.ugandaconnection.com/contact/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
oncord
2026-06-27 17:52:57
(1 week ago)
Form spam
Web Spam
๐ซ๐ท
jank
2026-06-27 16:43:24
(1 week ago)
pop3 login attempt
Brute-Force
Anonymous
2026-06-25 23:02:24
(1 week ago)
| [Dangerous/Taiwan] Aggressive IP 103.227.224.96 (~30 hits). Type: DoS Defender- Web server 400 err ...
show more
| [Dangerous/Taiwan] Aggressive IP 103.227.224.96 (~30 hits). Type: DoS Defender- Web server 400 error code
show less
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
lostswordfish.com
2026-06-25 19:20:05
(1 week ago)
Wordfence waf block on fairregistry
Web App Attack
๐บ๐ธ
oncord
2026-06-25 10:55:39
(1 week ago)
Form spam
Web Spam
๐บ๐ธ
TPI-Abuse
2026-06-25 00:37:32
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 20:37:25.661856 2026] [security2:error] [pid 18404:tid 18404] [client 103.227.224.96:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ard.global|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ard.global"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajx4RXze9hEExC-uxmDWBAAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 22:24:28
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 103.227.224.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 18:24:25.597830 2026] [security2:error] [pid 23118:tid 23118] [client 103.227.224.96:59346] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ttlatl.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ttlatl.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajxZGVlxKKA_ecJ8wWp5QAAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack