๐บ๐ธ
TPI-Abuse
2025-10-23 08:28:32
(8 months ago)
(mod_security) mod_security (id:225170) triggered by 193.31.127.132 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.31.127.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 23 04:28:27.996081 2025] [security2:error] [pid 24243:tid 24243] [client 193.31.127.132:63531] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cms2020.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cms2020.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aPnnK4njsrWBmDMFLp1ARQAAAAk"], referer: https://cms2020.com/wp-json/wp/v2/users/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ช
webbfabriken
2025-10-14 10:42:25
(8 months ago)
Invalid WordPress login attempt
Attack reported by Webbfabiken Security API - WFSecAPI
Brute-Force
๐บ๐ธ
TPI-Abuse
2025-06-20 23:07:48
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 193.31.127.132 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 193.31.127.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 19:07:40.507905 2025] [security2:error] [pid 2965123:tid 2965123] [client 193.31.127.132:16589] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Capital Club II/Thumbs.db"] [unique_id "aFXpvI7C9oL-AQXpMSzxbAAAAAA"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Capital%20Club%20II/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2025-05-10 04:56:39
(1 year ago)
Bad Web Bot
๐บ๐ธ
Anonymous
2025-02-28 16:00:00
(1 year ago)
Brute force attack detected from 193.31.127.132
DDoS Attack
Brute-Force
Web App Attack
๐บ๐ธ
Anonymous
2025-02-28 16:00:00
(1 year ago)
Brute force attack detected from 193.31.127.132
DDoS Attack
Brute-Force
Web App Attack
๐บ๐ธ
Anonymous
2025-02-28 16:00:00
(1 year ago)
Brute force attack detected from 193.31.127.132
DDoS Attack
Brute-Force
Web App Attack
๐บ๐ธ
Anonymous
2025-02-28 16:00:00
(1 year ago)
Brute force attack detected from 193.31.127.132
DDoS Attack
Brute-Force
Web App Attack
๐บ๐ธ
Anonymous
2025-02-28 16:00:00
(1 year ago)
Brute force attack detected from 193.31.127.132
DDoS Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-18 00:11:19
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 193.31.127.132 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 193.31.127.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 17 19:11:16.210568 2024] [security2:error] [pid 32490:tid 32490] [client 193.31.127.132:55241] [client 193.31.127.132] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||gamepart.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gamepart.com"] [uri "/home/tancedi1/gamepart.com"] [unique_id "ZzqGJJnaSf1cpcBINJ1gZgAAAAA"], referer: http://answers.google.com/answers/threadview/id/552967.html
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-03 03:43:43
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 193.31.127.132 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 193.31.127.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 02 23:43:36.741288 2024] [security2:error] [pid 1808809:tid 1808809] [client 193.31.127.132:34151] [client 193.31.127.132] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Apex II/Thumbs.db"] [unique_id "ZybxaBWMGUJ62jxafGOkggAAABs"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Apex%20II/
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-10-11 06:10:11
(1 year ago)
Automatic report - Vulnerability scan
/RDWeb/Pages/en-US/login.aspx
Web App Attack
๐จ๐ฆ
wil.com
2024-10-09 19:55:24
(1 year ago)
GlobalProtect login attempts with user scanner.
VPN IP
Brute-Force
๐บ๐ธ
MrDD
2024-10-09 16:39:51
(1 year ago)
Brute Force Attack on Cisco Web VPN
Brute-Force
๐ท๐บ
sms.ru
2024-09-28 16:20:06
(1 year ago)
SMS pumping attack from foreign country
DDoS Attack