๐ช๐ธ
librebit
2026-07-14 21:47:41
(9 hours ago)
Brute force
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-14 15:32:13
(15 hours ago)
(mod_security) mod_security (id:225170) triggered by 170.168.30.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.30.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 11:32:06.027905 2026] [security2:error] [pid 5845:tid 5845] [client 170.168.30.171:19389] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||lowrygroup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lowrygroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "alZWdqdCIIkSVjMnsTmrggAAAAs"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 06:22:38
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 170.168.30.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.30.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 02:22:30.043121 2026] [security2:error] [pid 17058:tid 17085] [client 170.168.30.171:55817] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ogier.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ogier.us"] [uri "/wp-json/wp/v2/users"] [unique_id "alXVpkYe0tB5ZBfQXX5JsQAAABg"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
librebit
2026-07-13 06:52:34
(1 day ago)
Brute force
Brute-Force
๐ฆ๐บ
screwlooseit.com.au
2026-06-02 20:37:28
(1 month ago)
Blocked by CSF 13 firewall - Rule: WPLOGIN
US/United States/-
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-10 02:27:16
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.30.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.30.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 22:27:08.879447 2026] [security2:error] [pid 1739546:tid 1739546] [client 170.168.30.171:32087] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||zebax.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "zebax.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adhf_O-WEtdDZB9dzavLYwAAAAQ"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-08 10:38:05
(3 months ago)
apache vulnerability scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 20:42:39
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.30.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.30.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 16:42:33.343481 2026] [security2:error] [pid 3021166:tid 3021166] [client 170.168.30.171:64335] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||helik.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "helik.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adVsOYNhNYNL_15dsQRIUwAAAAg"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-02-06 23:09:59
(5 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 170.168.30.171 (NL/The Netherlands/-): 1 in th ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 170.168.30.171 (NL/The Netherlands/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐ซ๐ท
masterguru
2026-02-06 22:37:43
(5 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 170.168.30.171 (NL/The Netherlands/-): 1 in th ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 170.168.30.171 (NL/The Netherlands/-): 1 in the last 3600 secs (0-197)
show less
Hacking
๐ช๐ธ
10dencehispahard SL
2026-01-28 06:56:09
(5 months ago)
Wordpress probing for vulnerabilities
Hacking
Exploited Host
Anonymous
2026-01-21 16:43:24
(5 months ago)
wordpress-trap
Web App Attack
๐ซ๐ท
masterguru
2025-12-25 10:34:28
(6 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 170.168.30.171 (NL/The Netherlands/-): 1 in th ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 170.168.30.171 (NL/The Netherlands/-): 1 in the last 3600 secs (0-197)
show less
Hacking