๐บ๐ธ
TPI-Abuse
2026-04-11 03:24:12
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 23:24:05.695583 2026] [security2:error] [pid 3797941:tid 3797941] [client 193.151.189.155:63537] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||sharkfamily.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sharkfamily.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adm-1aeyw6Qj90xQ9h8AdwAAAAs"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 03:46:06
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 23:45:59.288027 2026] [security2:error] [pid 11517:tid 11517] [client 193.151.189.155:37661] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||grupoimaginarte.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grupoimaginarte.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abzC98gvHdzp9p__qkI39AAAAAo"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-17 20:15:33
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 17 16:15:25.826493 2026] [security2:error] [pid 32505:tid 32505] [client 193.151.189.155:16801] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jessicabaer.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jessicabaer.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abm2XVylp_fHKjGBoJPb8gAAAAY"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ช
Jaime Sotelo
2026-03-11 16:24:00
(3 months ago)
Wordpress brute force attack""
Brute-Force
๐จ๐ญ
backslash
2026-03-11 08:36:00
(3 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-02-25 17:28:55
(4 months ago)
(mod_security) mod_security (id:210350) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210350) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 12:28:46.121882 2026] [security2:error] [pid 24078:tid 24078] [client 193.151.189.155:54267] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||advancedmotorsports.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "advancedmotorsports.com"] [uri "/"] [unique_id "aZ8xTkVKrNj4W45ahZjkgwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-02-20 06:05:28
(4 months ago)
Scanning/Probing (18)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-31 21:18:21
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 193.151.189.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 31 16:18:14.450545 2025] [security2:error] [pid 5847:tid 5847] [client 193.151.189.155:19103] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.gemco-mfg.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.gemco-mfg.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVWTFt4nKF7DEJ9Iok5TlQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
DocNetzwerk
2025-12-25 06:13:31
(6 months ago)
(wordpress) Failed wordpress login from 193.151.189.155 (US/United States/-)
Brute-Force
๐จ๐ฟ
lp
2025-03-17 17:50:46
(1 year ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 193.151.189.155
2025-03-17T17:32:05+0 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 193.151.189.155
2025-03-17T17:32:05+01:00 vpn Access-Reject 'comanche' station: 193.151.189.155 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
๐บ๐ธ
octageeks.com
2025-03-17 04:06:43
(1 year ago)
Wordpress malicious attack:[octablocked]
Web App Attack
๐จ๐ฟ
lp
2025-03-13 14:52:50
(1 year ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 193.151.189.155
2025-03-13T15:25:59+0 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 193.151.189.155
2025-03-13T15:25:59+01:00 vpn Access-Reject 'henery' station: 193.151.189.155 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
Anonymous
2023-11-18 18:40:03
(2 years ago)
opencart admin attack from fail2ban
...
DDoS Attack
Brute-Force
SSH
Anonymous
2021-05-28 15:45:00
(5 years ago)
Credential Stuffing
Brute-Force
Anonymous
2021-05-28 15:45:00
(5 years ago)
Credential Stuffing
Brute-Force