πΊπΈ
TPI-Abuse
2026-07-17 16:10:34
(4 hours ago)
(mod_security) mod_security (id:225170) triggered by 193.202.14.109 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.14.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 12:10:27.935442 2026] [security2:error] [pid 26798:tid 26798] [client 193.202.14.109:56759] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||kippert.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kippert.com"] [uri "/wp-json/wp/v2/users"] [unique_id "alpT8xPriIT3LBo9M7SUzwAAAAc"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
FeG Deutschland
2026-07-10 21:30:32
(6 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 257
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-10 14:52:28
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 193.202.14.109 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.14.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 10:52:20.769898 2026] [security2:error] [pid 5191:tid 5191] [client 193.202.14.109:29823] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||enfiestate.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "enfiestate.com"] [uri "/wp-json/wp/v2/users"] [unique_id "alEHJLdbg_lKvQ4w3IDSPgAAACE"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-21 20:56:58
(1 month ago)
FPROCO WEBEXPLOIT 193.202.14.109 (193.202.14.109)
Web App Attack
πΊπΈ
nationaleventpros.com
2026-05-14 20:03:30
(2 months ago)
WordPress login attempt
Brute-Force
πΊπΈ
NicoID
2026-04-28 00:14:42
(2 months ago)
193.202.14.109 - - [27/Apr/2026:05:35:38 -0600] "GET /wp-login.php HTTP/1.1" 200 4885 "https://www.g ...
show more
193.202.14.109 - - [27/Apr/2026:05:35:38 -0600] "GET /wp-login.php HTTP/1.1" 200 4885 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
...
show less
Brute-Force
πΊπΈ
TPI-Abuse
2026-01-01 14:42:41
(6 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.14.109 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.14.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 01 09:42:33.979354 2026] [security2:error] [pid 511:tid 511] [client 193.202.14.109:56353] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bernsteinip.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bernsteinip.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVaH2dvj9GA_-DUvy49hCgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
ne1for23
2026-01-01 03:06:03
(6 months ago)
193.202.14.109 - - [01/Jan/2026:03:06:03 +0000] "GET /wp-login.php HTTP/1.1" 403 153 "-" "Mozilla/5. ...
show more
193.202.14.109 - - [01/Jan/2026:03:06:03 +0000] "GET /wp-login.php HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:138.0) Gecko/20100101 Firefox/138.0"
show less
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-27 12:57:12
(6 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.14.109 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.14.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 07:57:04.303760 2025] [security2:error] [pid 2821:tid 2821] [client 193.202.14.109:44161] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.gemco-mfg.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.gemco-mfg.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aU_XoKIgupIcqQNi1zZg7gAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
backslash
2025-12-27 03:00:06
(6 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
π©πͺ
Packets-Decreaser.NET
2025-12-10 14:34:36
(7 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
π·πΊ
sms.ru
2024-09-27 14:25:05
(1 year ago)
SMS pumping attack from foreign country
DDoS Attack
π©πͺ
Packets-Decreaser.NET
2024-02-01 04:15:17
(2 years ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
π΅π±
rafix
2023-11-01 00:17:18
(2 years ago)
Scrapping website, using diffrent useragents, not wait for response, #botnet20231026
DDoS Attack
Bad Web Bot