๐บ๐ธ
TPI-Abuse
2026-07-08 23:16:28
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 19:16:23.553603 2026] [security2:error] [pid 24430:tid 24430] [client 197.186.1.43:12729] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 197.186.1.43 (+1 hits since last alert)|starvationacres.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "starvationacres.us"] [uri "/xmlrpc.php"] [unique_id "ak7aR6HqQ8Eg7fS0jAlHGAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Kenshin869
2026-07-08 19:50:06
(1 day ago)
Wordpress unauthorized access attempt
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-08 18:50:54
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 14:50:50.720385 2026] [security2:error] [pid 11301:tid 11301] [client 197.186.1.43:9189] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 197.186.1.43 (+1 hits since last alert)|pathpa.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pathpa.org"] [uri "/xmlrpc.php"] [unique_id "ak6cCsN_undrafyf9ueVeAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 17:17:44
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 13:17:37.060282 2026] [security2:error] [pid 21905:tid 21905] [client 197.186.1.43:3354] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 197.186.1.43 (+1 hits since last alert)|freemanfoundationcle.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "freemanfoundationcle.org"] [uri "/xmlrpc.php"] [unique_id "ak6GMY6-TwncIFcySNJAQAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 11:22:26
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 07:22:21.378350 2026] [security2:error] [pid 26947:tid 26947] [client 197.186.1.43:15507] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 197.186.1.43 (+1 hits since last alert)|lesdaniels.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lesdaniels.com"] [uri "/xmlrpc.php"] [unique_id "ak4y7TdYdYWnONG67HAlXwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 04:40:53
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 00:40:49.570342 2026] [security2:error] [pid 30291:tid 30291] [client 197.186.1.43:5873] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 197.186.1.43 (+1 hits since last alert)|celebritybikinigossip.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "celebritybikinigossip.com"] [uri "/xmlrpc.php"] [unique_id "ak3U0XzZILD3VVacAvveFQAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 01:25:44
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 21:25:38.491802 2026] [security2:error] [pid 1886:tid 1886] [client 197.186.1.43:4710] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 197.186.1.43 (+1 hits since last alert)|josephshv.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "josephshv.com"] [uri "/xmlrpc.php"] [unique_id "ak2nEs_51J9DZXr9S9kEqwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
bazter.pro
2026-07-07 23:54:58
(2 days ago)
Fail2Ban: plesk-bot-aggressive - 15 failures
Port Scan
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-07 21:07:10
(2 days ago)
(wordpress) Failed wordpress login from 197.186.1.43 (TZ/Tanzania/43-1-186-197.r.airtel.co.tz)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-07 17:04:51
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 197.186.1.43 (43-1-186-197.r.airtel.co.tz): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 13:04:45.672230 2026] [security2:error] [pid 31727:tid 31727] [client 197.186.1.43:12524] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 197.186.1.43 (+1 hits since last alert)|tourissue.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tourissue.com"] [uri "/xmlrpc.php"] [unique_id "ak0xrRAMNTZLLGsfmw10XwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
debestelapp
2026-07-07 13:00:07
(2 days ago)
Web App Attack
Anonymous
2026-07-07 10:48:05
(2 days ago)
Fail2ban filtered
...
Web App Attack
๐บ๐ธ
kosada.com
2026-07-02 19:08:13
(1 week ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot