๐บ๐ธ
TPI-Abuse
2026-07-05 18:25:13
(5 days ago)
(mod_security) mod_security (id:225170) triggered by 170.168.175.21 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.175.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 14:25:00.377518 2026] [security2:error] [pid 31892:tid 31892] [client 170.168.175.21:39763] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||thestardance.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "thestardance.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akqhfMU4mJz753db_Os58gAAAAk"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Tilellit.PRO
2026-07-05 04:29:54
(5 days ago)
WP Armour Plugin detection
Web Spam
Brute-Force
๐ซ๐ท
Tilellit.PRO
2026-07-02 04:31:36
(1 week ago)
tilellit/wp-armour-ban
Hacking
๐ซ๐ท
Tilellit.PRO
2026-06-29 08:28:48
(1 week ago)
Fail2Ban banned 170.168.175.21 for security violations in jail wp-armour. Log: 2026/06/29 08:28:48 [ ...
show more
Fail2Ban banned 170.168.175.21 for security violations in jail wp-armour. Log: 2026/06/29 08:28:48 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 170.168.175.21 | Target: wplogin" , client: 170.168.175.21, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐ซ๐ท
Tilellit.PRO
2026-06-27 09:18:36
(1 week ago)
Fail2Ban banned 170.168.175.21 for security violations in jail wp-armour. Log: 2026/06/27 09:18:35 [ ...
show more
Fail2Ban banned 170.168.175.21 for security violations in jail wp-armour. Log: 2026/06/27 09:18:35 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 170.168.175.21 | Target: wplogin" , client: 170.168.175.21, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐น๐ท
pamircil
2026-04-29 01:01:07
(2 months ago)
๐ฏ WinnieThePooh Honeypot : GET request to '/wp-config.backup' on (http/80)๐
SSH
Brute-Force
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-13 16:03:39
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.175.21 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.175.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 12:03:35.533423 2026] [security2:error] [pid 951988:tid 951988] [client 170.168.175.21:34085] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||endicottmedia.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "endicottmedia.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ad0T124vbHXaBa7JzVGjDwAAAA4"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-13 14:44:36
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.175.21 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.175.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 10:44:30.188108 2026] [security2:error] [pid 3977639:tid 3977653] [client 170.168.175.21:39073] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||eliteproductions.tv|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eliteproductions.tv"] [uri "/wp-json/wp/v2/users"] [unique_id "ad0BTjWNENU_0wBf1MQH8AAAAIg"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2026-04-10 05:03:00
(3 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ฉ๐ช
R.G.
2026-03-22 20:54:05
(3 months ago)
(XMLRPCorWHATEVER) Get lost please 170.168.175.21 (PL/Poland/-): 3 in the last 900 secs; Ports: *; D ...
show more
(XMLRPCorWHATEVER) Get lost please 170.168.175.21 (PL/Poland/-): 3 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:02:12
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam