๐ช๐ธ
librebit
2026-07-16 19:53:36
(1 day ago)
Brute force
Brute-Force
Anonymous
2026-05-20 02:40:56
(1 month ago)
Banned by SPAMHAUS ASN-DROP list (ASN: 43444)
DDoS Attack
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-26 23:42:43
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 194.99.27.220 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 194.99.27.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 19:42:36.331572 2026] [security2:error] [pid 9583:tid 9606] [client 194.99.27.220:47529] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||penboy7.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "penboy7.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acXEbJUcxE2eZnJp8uihiQAAABI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 06:01:17
(3 months ago)
(mod_security) mod_security (id:240335) triggered by 194.99.27.220 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 194.99.27.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 02:01:11.769818 2026] [security2:error] [pid 30044:tid 30044] [client 194.99.27.220:23107] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 194.99.27.220 (+1 hits since last alert)|advantagesystemsgroup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "advantagesystemsgroup.com"] [uri "/xmlrpc.php"] [unique_id "ab40J3s0jtBtmPP5IPZI8AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 07:13:12
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 194.99.27.220 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 194.99.27.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 03:13:06.511834 2026] [security2:error] [pid 7236:tid 7236] [client 194.99.27.220:42053] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||sahinozalit.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sahinozalit.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abzzgj8lbT9N-wZAiFvJWgAAABQ"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-14 15:44:44
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 194.99.27.220 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 194.99.27.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 11:44:40.446869 2026] [security2:error] [pid 4458:tid 4458] [client 194.99.27.220:30309] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mikeberro.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mikeberro.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abWCaGaIoBqlrGHM0BIv0QAAAAM"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-03-05 07:19:51
(4 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.220 (NL/The Netherlands/-): 1 in the ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.220 (NL/The Netherlands/-): 1 in the last 3600 secs (0-197)
show less
Hacking
๐ซ๐ท
masterguru
2026-03-05 06:33:54
(4 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.220 (NL/The Netherlands/-): 1 in the ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.220 (NL/The Netherlands/-): 1 in the last 3600 secs (0-196)
show less
Hacking
๐ซ๐ท
masterguru
2026-03-05 05:32:37
(4 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.220 (NL/The Netherlands/-): 1 in the ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.220 (NL/The Netherlands/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐ซ๐ท
masterguru
2026-03-05 04:23:54
(4 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.220 (FI/Finland/-): 1 in the last 36 ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.220 (FI/Finland/-): 1 in the last 3600 secs (0-193)
show less
Hacking
Anonymous
2025-10-14 23:58:54
(9 months ago)
wordpress-trap
Web App Attack
๐ณ๐ฑ
exxos
2025-10-12 03:03:02
(9 months ago)
Attacks with Bad user agents
Hacking
๐ท๐บ
sms.ru
2024-09-22 02:45:06
(1 year ago)
SMS pumping attack from foreign country
DDoS Attack