๐ช๐ธ
librebit
2026-07-11 09:06:28
(5 days ago)
Brute force
Brute-Force
๐ช๐ธ
librebit
2026-07-09 21:47:49
(1 week ago)
Brute force
Brute-Force
๐บ๐ธ
nationaleventpros.com
2026-07-09 16:08:56
(1 week ago)
WordPress login attempt
Brute-Force
๐ช๐ธ
librebit
2026-06-28 10:00:21
(2 weeks ago)
Brute force
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-03-25 10:02:08
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 06:02:03.600474 2026] [security2:error] [pid 19094:tid 19094] [client 185.168.29.91:17987] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||pencilnerd.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pencilnerd.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acOym3q3-m51wY1XfF38QAAAABQ"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-24 11:48:17
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 07:48:12.523351 2026] [security2:error] [pid 13174:tid 13243] [client 185.168.29.91:49277] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||earthtravel.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "earthtravel.net"] [uri "/wp-json/wp/v2/users"] [unique_id "acJ5_Akg4BS8IPTSoqnB-AAAAcw"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nationaleventpros.com
2026-03-22 01:28:16
(3 months ago)
WordPress login attempt
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-03-21 16:10:09
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 12:10:03.555476 2026] [security2:error] [pid 13861:tid 13861] [client 185.168.29.91:17383] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gonzalez.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gonzalez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab7C2wh45Nc15lUR6DpxGwAAAAI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 12:08:27
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 08:08:20.973840 2026] [security2:error] [pid 32315:tid 32344] [client 185.168.29.91:10071] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||curubin.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "curubin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab6KNPee8A4AURQn6Az-oQAAAFY"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 11:01:11
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 07:01:07.016474 2026] [security2:error] [pid 8033:tid 8033] [client 185.168.29.91:30773] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||wisewerks.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wisewerks.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab56cz1GAuUUH_L6cCqJBAAAABo"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-06 06:05:09
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 06 01:05:01.939598 2026] [security2:error] [pid 21462:tid 21462] [client 185.168.29.91:39619] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ejnes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ejnes.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aapujXqmEgla9B6rDfzxUQAAAAw"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-03 19:09:43
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 185.168.29.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 14:09:38.296380 2026] [security2:error] [pid 18206:tid 18206] [client 185.168.29.91:58723] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gadgeteer.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gadgeteer.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aacx8mLMDgQI4Malty50OQAAAB4"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack