๐บ๐ธ
TPI-Abuse
2026-06-23 02:26:49
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 22:26:42.027681 2026] [security2:error] [pid 28802:tid 28802] [client 216.250.116.10:37872] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.transcapitalsolutions.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.transcapitalsolutions.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajnu4nNPPWBDZzVT_nL3pgAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 23:52:19
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 19:52:13.322002 2026] [security2:error] [pid 30975:tid 30975] [client 216.250.116.10:42880] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||wwfstudio.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wwfstudio.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajnKrVqF5JKfH_4znBHgdAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 22:15:20
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 18:15:13.065474 2026] [security2:error] [pid 29598:tid 29598] [client 216.250.116.10:53396] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.bickleton.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bickleton.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajmz8cpu8UJ0_ygMKd63NgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 19:51:59
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 15:51:55.523845 2026] [security2:error] [pid 26232:tid 26232] [client 216.250.116.10:56254] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.abeltours.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.abeltours.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajmSW0J6rbV3G3l-mQKRuAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 19:15:07
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 15:14:55.972002 2026] [security2:error] [pid 1810:tid 1810] [client 216.250.116.10:59776] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.waterjetsolutions.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.waterjetsolutions.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajmJry0P_vd8lruYskcRAwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
konseptit
2026-06-21 10:00:22
(1 week ago)
(wordpress) Failed wordpress login from 216.250.116.10 (US/United States/-)
Brute-Force
๐ณ๐ฑ
Brict IT
2026-06-21 02:24:12
(1 week ago)
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 21:27:54
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 17:27:48.716214 2026] [security2:error] [pid 25662:tid 25662] [client 216.250.116.10:53034] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.healthmarkcounseling.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.healthmarkcounseling.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajcF1INpAPbx3N0ULxXeTwAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 17:02:52
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 216.250.116.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 13:02:44.619046 2026] [security2:error] [pid 7914:tid 7914] [client 216.250.116.10:48836] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.nomorenicenice.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nomorenicenice.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajbHtJ-URNfFlIndnYoP3AAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-13 02:26:50
(2 weeks ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐จ๐ญ
Origon
2026-06-13 02:04:02
(2 weeks ago)
http-bf-wordpress_bf - IP: 216.250.116.10 - time="2026-06-13T04:04:01+02:00" level=info msg="(555f6 ...
show more
http-bf-wordpress_bf - IP: 216.250.116.10 - time="2026-06-13T04:04:01+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-bf-wordpress_bf by ip 216.250.116.10 (US/8560) : 4h ban on Ip 216.250.116.10" module=db
show less
Web App Attack