πͺπΈ
librebit
2026-07-05 17:16:54
(1 hour ago)
Brute force
Brute-Force
πͺπΈ
librebit
2026-07-04 04:38:10
(1 day ago)
Brute force
Brute-Force
πͺπΈ
librebit
2026-06-27 13:50:45
(1 week ago)
Brute force
Brute-Force
πΊπΈ
TPI-Abuse
2026-06-25 14:49:23
(1 week ago)
(mod_security) mod_security (id:211030) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:211030) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 10:49:16.563001 2026] [security2:error] [pid 20220:tid 20220] [client 170.168.243.143:54103] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at ARGS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "17"] [id "211030"] [rev "3"] [msg "COMODO WAF: LDAP Injection Attack||powerkiteforum.com|F|2"] [data "Matched Data: ('~'||( found within ARGS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "powerkiteforum.com"] [uri "/viewthread.php"] [unique_id "aj0_7O_0Y9yZFTJxsPHRswAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-17 10:01:16
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 06:00:53.562940 2026] [security2:error] [pid 11342:tid 11342] [client 170.168.243.143:25985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "site.ablogisticsgroup.com"] [uri "/wp-config.php_bak"] [unique_id "ajJwVSSg0KP3gZDxqZYC_QAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-05 14:03:43
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 10:03:36.358283 2026] [security2:error] [pid 31522:tid 31522] [client 170.168.243.143:31963] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||zodiacwin.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "zodiacwin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adJruPsHeOYwli1M--VivgAAAAQ"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-01 23:31:39
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 19:31:32.316052 2026] [security2:error] [pid 10234:tid 10234] [client 170.168.243.143:31093] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||43cambridge.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "43cambridge.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ac2q1FaaN6zF26eDCvWcfQAAAAY"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-01 21:41:52
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 17:41:45.239972 2026] [security2:error] [pid 28066:tid 28066] [client 170.168.243.143:12815] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||tiley.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tiley.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ac2RGVwk8JObZb4P5Q2dvAAAAAs"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-03-31 08:38:52
(3 months ago)
FPROCO WEBEXPLOIT 170.168.243.143 (170.168.243.143)
Web App Attack
πΊπΈ
nationaleventpros.com
2026-03-31 08:15:10
(3 months ago)
WordPress login attempt
Brute-Force
πΊπΈ
TPI-Abuse
2025-11-15 18:06:20
(7 months ago)
(mod_security) mod_security (id:210350) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210350) triggered by 170.168.243.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 13:06:16.161932 2025] [security2:error] [pid 13078:tid 13082] [client 170.168.243.143:20121] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||vavryn.net|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "vavryn.net"] [uri "/"] [unique_id "aRjBGEx2QF53a6W38-WnMwAAAII"]
show less
Brute-Force
Bad Web Bot
Web App Attack