Anonymous
2026-07-06 13:41:09
(13 hours ago)
Bot / scanning and/or hacking attempts: GET /wp-login.php HTTP/1.1, GET /wp-admin/ HTTP/1.1, GET /wp ...
show more
Bot / scanning and/or hacking attempts: GET /wp-login.php HTTP/1.1, GET /wp-admin/ HTTP/1.1, GET /wp-login.php?redirect_to=https%3A%2F%2Fobsjoppe.nl%2Fwp-ad, POST /wp-login.php HTTP/1.1
show less
Hacking
Web App Attack
Anonymous
2026-07-03 14:24:36
(3 days ago)
2026-07-03T16:24:35.935259+02:00 polaris wp(sahpa.co.za)[63221]: Blocked authentication attempt for ...
show more
2026-07-03T16:24:35.935259+02:00 polaris wp(sahpa.co.za)[63221]: Blocked authentication attempt for LisaNcube from 193.202.87.236
...
show less
Brute-Force
Web App Attack
Anonymous
2026-07-01 03:22:13
(6 days ago)
Attac
Brute-Force
πΊπΈ
TPI-Abuse
2026-06-30 16:44:48
(6 days ago)
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 12:44:40.488515 2026] [security2:error] [pid 10778:tid 10778] [client 193.202.87.236:24529] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jmms.mx|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jmms.mx"] [uri "/wp-json/wp/v2/users"] [unique_id "akPyeBL498ilDIU6Q8ZmowAAAA8"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Dade
2026-06-28 08:15:40
(1 week ago)
Fail2Ban banned 193.202.87.236 for security violations in jail wp-armour. Log: 2026/06/28 08:15:39 [ ...
show more
Fail2Ban banned 193.202.87.236 for security violations in jail wp-armour. Log: 2026/06/28 08:15:39 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 193.202.87.236 | Target: wplogin" , client: 193.202.87.236, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
πΊπΈ
TPI-Abuse
2026-06-21 23:52:56
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 19:52:51.954730 2026] [security2:error] [pid 31122:tid 31122] [client 193.202.87.236:15435] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||wilsontribe.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wilsontribe.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajh5U583hBUVviWOIl_OlQAAAAk"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-17 08:38:13
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 17 04:38:07.359915 2026] [security2:error] [pid 4024151:tid 4024151] [client 193.202.87.236:23305] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jeffhenry.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jeffhenry.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aeHxb79NGFOwFEKVnwH8kQAAAAM"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-13 20:37:33
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 16:37:27.143409 2026] [security2:error] [pid 1458129:tid 1458129] [client 193.202.87.236:13445] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||billthompsons.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "billthompsons.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ad1UB1jP2Ne1PFK0EbyewgAAAAw"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-01-22 15:50:26
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 10:50:20.948447 2026] [security2:error] [pid 30656:tid 30656] [client 193.202.87.236:39149] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||tgdingenieria.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tgdingenieria.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aXJHPAWrUfUsvtKrhA-HTQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-01-22 09:34:17
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 04:34:09.274632 2026] [security2:error] [pid 2914944:tid 2915021] [client 193.202.87.236:54023] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||miraclebrow.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "miraclebrow.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXHvEdpZViZknwx8luVADAAAAQg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πͺπΈ
el-brujo
2024-06-09 21:23:00
(2 years ago)
DDoS Attack Layer 7 - REQUESTS / HTTP/2.0
DDoS Attack
π¬π§
Keratin
2023-05-18 08:56:31
(3 years ago)
Possible web app exploitation
Brute-Force
Web App Attack
π¬π§
headwall
2022-02-16 22:18:35
(4 years ago)
Attempted WordPress user enumeration by client 193.202.87.236
Web App Attack
π¬π§
headwall
2022-02-16 22:18:35
(4 years ago)
Attempted WordPress user enumeration by client 193.202.87.236
Web App Attack
π²πΎ
syokadmin
2022-02-14 17:06:37
(4 years ago)
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (US/United States/-): 1 in the l ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.87.236 (US/United States/-): 1 in the last 3600 secs
show less
Brute-Force