๐บ๐ธ
TPI-Abuse
2026-05-03 12:59:16
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 193.202.8.60 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.8.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 08:59:11.722994 2026] [security2:error] [pid 30582:tid 30582] [client 193.202.8.60:13299] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||grollman.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grollman.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afdGnxLGnSzz0SadmswEOwAAAAc"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-04-30 11:14:47
(1 month ago)
[ThuApr3013:14:43.2309322026][security2:error][pid2196438:tid2197274][client193.202.8.60:0]ModSecuri ...
show more
[ThuApr3013:14:43.2309322026][security2:error][pid2196438:tid2197274][client193.202.8.60:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"cybertelgroup.com\"][uri\"/xmlrpc.php\"][unique_id\"afM5o8CzBmSMtTpZUNxe8gAAAQ0\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-29 22:28:52
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.8.60 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.8.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 18:28:47.169060 2026] [security2:error] [pid 3063:tid 3063] [client 193.202.8.60:20105] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||rntoday.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rntoday.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afKGH6zpXCSVn-HpRh8FrAAAAAI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
spamverify.com
2026-04-10 19:56:28
(2 months ago)
Honeypot Hit: WordPress Login
Web Spam
Blog Spam
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-10 09:08:01
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.8.60 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.8.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 05:07:55.862918 2026] [security2:error] [pid 2482506:tid 2482506] [client 193.202.8.60:42451] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||unaweep.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "unaweep.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adi969e11x_NJIFhiTxvGgAAAAk"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-09 17:58:14
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.8.60 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.8.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 13:58:07.705174 2026] [security2:error] [pid 981415:tid 981415] [client 193.202.8.60:54485] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cyberclay.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cyberclay.net"] [uri "/wp-json/wp/v2/users"] [unique_id "adfor40A0sRIwgv-2O8kwgAAABA"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
cleanweb
2026-04-02 05:03:27
(2 months ago)
Looking for /dev.sql, Agent: Mozilla/5.0 (Linux; Android 13) AppleWebKit/537.36 (KHTML, like Gecko) ...
show more
Looking for /dev.sql, Agent: Mozilla/5.0 (Linux; Android 13) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0 Mobile Safari/537.36
show less
Brute-Force
Phishing
๐ฉ๐ช
ps-center
2022-02-17 01:02:51
(4 years ago)
SS5,Magento Bruteforce Login Attack POST /index.php/admin/
Web Spam
Bad Web Bot
Web App Attack
๐ณ๐ฑ
xyz.rip
2022-02-16 23:11:05
(4 years ago)
Magento Bruteforce Attempt...
Brute-Force
Web App Attack
๐ฉ๐ช
ps-center
2022-02-14 03:27:41
(4 years ago)
SS5,Magento Bruteforce Login Attack POST /index.php/admin/
Web Spam
Bad Web Bot
Web App Attack
๐ณ๐ฑ
xyz.rip
2022-02-11 11:18:42
(4 years ago)
Magento Bruteforce Attempt...
Brute-Force
Web App Attack
๐ณ๐ฑ
xyz.rip
2022-02-03 02:06:39
(4 years ago)
Magento Bruteforce Attempt...
Brute-Force
Web App Attack
๐ฉ๐ช
ps-center
2022-01-29 09:48:14
(4 years ago)
SS5,Magento Bruteforce Login Attack POST /index.php/admin/
Web Spam
Bad Web Bot
Web App Attack
๐ฉ๐ช
ps-center
2022-01-25 20:57:22
(4 years ago)
C1,Magento Bruteforce Login Attack POST /index.php/admin/
Web Spam
Bad Web Bot
Web App Attack
๐ฉ๐ช
ps-center
2022-01-24 17:36:54
(4 years ago)
SS5,Magento Bruteforce Login Attack POST /index.php/admin/
Web Spam
Bad Web Bot
Web App Attack