๐ณ๐ฟ
Tripwire
2026-07-12 04:06:37
(4 days ago)
Wordpress login attempts
Brute-Force
Web App Attack
๐ณ๐ฟ
Tripwire
2026-07-08 20:13:15
(1 week ago)
Wordpress login attempts
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-25 04:20:03
(3 months ago)
(mod_security) mod_security (id:210350) triggered by 176.126.111.133 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210350) triggered by 176.126.111.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 00:19:54.606593 2026] [security2:error] [pid 7427:tid 7455] [client 176.126.111.133:12259] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||condobudget.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "condobudget.com"] [uri "/"] [unique_id "acNiagjM-mjix8voWnEwkwAAANg"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-10-28 09:24:09
(8 months ago)
(mod_security) mod_security (id:225170) triggered by 176.126.111.133 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 176.126.111.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 28 05:24:06.148414 2025] [security2:error] [pid 7191:tid 7191] [client 176.126.111.133:28227] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jolankagroup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aQCLtiRvWnzWjk6O87nhvgAAAAM"], referer: https://jolankagroup.com/wp-json/wp/v2/users/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
wil.com
2024-09-24 11:32:11
(1 year ago)
GlobalProtect login attempts with user ehood.
VPN IP
Brute-Force
๐บ๐ธ
TPI-Abuse
2024-09-17 07:57:50
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 176.126.111.133 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 176.126.111.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 17 03:57:43.290033 2024] [security2:error] [pid 29180:tid 29180] [client 176.126.111.133:32189] [client 176.126.111.133] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||proyectando.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "proyectando.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zuk2d03Lzn_V7PGRJ4E72QAAAAI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-09-08 23:40:22
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 176.126.111.133 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 176.126.111.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 08 19:40:13.601679 2024] [security2:error] [pid 29971:tid 29983] [client 176.126.111.133:59101] [client 176.126.111.133] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||barneysprecision.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "barneysprecision.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zt413YW_oweBkM0r9ZxMYwAAAIE"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Roderic
2023-12-18 05:04:15
(2 years ago)
(apache-bow-document) Failed apache-bow-scanners trigger with match [redacted] from 176.126.111.133 ...
show more
(apache-bow-document) Failed apache-bow-scanners trigger with match [redacted] from 176.126.111.133 (US/United States/-)
show less
Hacking
Anonymous
2023-11-26 05:00:07
(2 years ago)
IP has triggered Cloudflare WAF
Bad Web Bot
๐จ๐ญ
backslash
2023-10-06 07:18:28
(2 years ago)
honeypot
Bad Web Bot
๐จ๐ญ
backslash
2023-09-04 13:12:43
(2 years ago)
honeypot
Bad Web Bot
๐น๐ผ
kk_it_man
2022-09-22 04:00:10
(3 years ago)
Hacking
๐ฉ๐ช
ANDREAS LYTOS
2022-05-31 23:35:32
(4 years ago)
(mod_security) mod_security triggered on hostname [redacted] 176.126.111.133 (US/United States/-)
SQL Injection
๐บ๐ธ
VSM Networks
2022-01-15 23:45:31
(4 years ago)
Credential Stuffing
Brute-Force