๐บ๐ธ
TPI-Abuse
2026-06-23 05:13:05
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 01:12:59.481526 2026] [security2:error] [pid 21884:tid 21884] [client 203.137.76.198:44290] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.texascottagebakers.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.texascottagebakers.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajoV24ia70k5q6LA3d2yzwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 23:17:38
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 19:17:33.099372 2026] [security2:error] [pid 7780:tid 7780] [client 203.137.76.198:45634] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.nomorenicenice.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nomorenicenice.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajnCjZOMhYrfq4s7_fKmEQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 08:37:35
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 04:37:27.426893 2026] [security2:error] [pid 28356:tid 28356] [client 203.137.76.198:48684] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.alafiariverrendezvous.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.alafiariverrendezvous.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajeix0upXFiPOVlIHgo10AAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-21 05:37:47
(1 week ago)
Ports: *; Direction: 0; Trigger: CT_LIMIT
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-06-20 20:46:00
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 16:45:54.610006 2026] [security2:error] [pid 12987:tid 12987] [client 203.137.76.198:53726] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.j3pr.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.j3pr.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajb8AoOM-FXKV2OL3UZvygAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 17:07:55
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 13:07:48.133202 2026] [security2:error] [pid 18247:tid 18259] [client 203.137.76.198:34234] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.scottspencergfx.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.scottspencergfx.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajbI5EQ4C9cU-H-GNagr9gAAAQo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-20 07:25:00
(1 week ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-20 04:44:45
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 00:44:37.521015 2026] [security2:error] [pid 3079:tid 3079] [client 203.137.76.198:48102] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.nypatriotcards.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nypatriotcards.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajYatSyGXUHSJ9TThbp0_wAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-17 23:20:13
(2 weeks ago)
Ports: *; Direction: 0; Trigger: CT_LIMIT
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-06-16 18:37:30
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 14:37:23.812457 2026] [security2:error] [pid 15040:tid 15040] [client 203.137.76.198:44128] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.peacecampus.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.peacecampus.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajGX467zZdBNTW72gBAGsgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 11:53:48
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 07:53:39.133057 2026] [security2:error] [pid 20122:tid 20122] [client 203.137.76.198:37496] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.rocksolidhomebuilders.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.rocksolidhomebuilders.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajE5Q2pVgoWBXRH_Ch2OHgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 00:39:07
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 20:39:00.792046 2026] [security2:error] [pid 29615:tid 29615] [client 203.137.76.198:38514] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.67ronin.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.67ronin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajCbJH_SQFnXdSEvvSLIVgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-15 22:29:04
(2 weeks ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 20:31:25
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 16:31:20.220028 2026] [security2:error] [pid 31789:tid 31789] [client 203.137.76.198:32842] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||fatbastardcompetition.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fatbastardcompetition.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajBhGIjwle1uGTQw7envzQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 19:49:37
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.a ...
show more
(mod_security) mod_security (id:225170) triggered by 203.137.76.198 (198.128/25.76.137.203.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 15:49:30.150718 2026] [security2:error] [pid 8186:tid 8186] [client 203.137.76.198:35376] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.fltsiminc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fltsiminc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajBXSkcXTSIN8I2caSphTAAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack