๐บ๐ธ
TPI-Abuse
2026-07-10 17:48:11
(1 hour ago)
(mod_security) mod_security (id:225170) triggered by 193.202.8.72 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.8.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 13:48:05.062374 2026] [security2:error] [pid 30532:tid 30532] [client 193.202.8.72:44233] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||chezlubacov.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "chezlubacov.org"] [uri "/wp-json/wp/v2/users"] [unique_id "alEwVWvBwCz3MVLeCKGdFwAAAAo"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 12:04:02
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 193.202.8.72 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.8.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 08:03:56.393558 2026] [security2:error] [pid 18761:tid 18761] [client 193.202.8.72:17519] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||brownlegacy.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brownlegacy.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ak48rFB-5X8QzFkx5dFcYgAAAAI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 11:33:15
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 193.202.8.72 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.8.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 07:33:08.473999 2026] [security2:error] [pid 14499:tid 14499] [client 193.202.8.72:65209] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||synercom.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "synercom.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ak41dDPaV2JpwRlZpcA6wgAAABM"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2026-07-04 21:21:02
(5 days ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-02 22:16:57
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 193.202.8.72 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.8.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 18:16:51.396177 2026] [security2:error] [pid 16795:tid 16795] [client 193.202.8.72:14003] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||j3ee.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "j3ee.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akbjUyvYNgX7pQJsUPj4DQAAABM"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-28 15:20:04
(1 week ago)
| CMS scanner: 3 domains targeted (CMS (WordPress or Joomla) login attempt.)
Web App Attack
Hacking
SQL Injection
๐ซ๐ท
Tilellit.PRO
2026-06-28 09:57:20
(1 week ago)
Fail2Ban banned 193.202.8.72 for security violations in jail wp-armour. Log: 2026/06/28 09:57:20 [er ...
show more
Fail2Ban banned 193.202.8.72 for security violations in jail wp-armour. Log: 2026/06/28 09:57:20 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 193.202.8.72 | Target: wplogin" , client: 193.202.8.72, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐ฎ๐น
VHosting
2026-03-26 19:57:14
(3 months ago)
Detected attack and reported by a human
Brute-Force
Web App Attack
SSH
DDoS Attack
Exploited Host
Bad Web Bot