๐บ๐ธ
TPI-Abuse
2026-07-03 01:59:17
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 21:59:09.715413 2026] [security2:error] [pid 27002:tid 27002] [client 2603:c020:15:3b73::14:50722] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||daveewalker.bz|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "daveewalker.bz"] [uri "/wp-json/wp/v2/users/"] [unique_id "akcXbTVqP83CHeM1npPZvgAAADQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 21:24:32
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 17:24:28.968731 2026] [security2:error] [pid 23549:tid 23549] [client 2603:c020:15:3b73::14:53120] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||whatcausesmentalillness.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "whatcausesmentalillness.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akbXDE19ZvuHe7PrZxQevAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 18:46:13
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 14:46:06.562867 2026] [security2:error] [pid 9917:tid 9917] [client 2603:c020:15:3b73::14:55094] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||therustedtree.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "therustedtree.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akax7nyN2V9bl7FR43GPnQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
maxxsense
2026-07-02 18:06:09
(2 days ago)
(postfix-unknown) Failed postfix unknown login with username [redacted] from 2603:c020:15:3b73::14 ( ...
show more
(postfix-unknown) Failed postfix unknown login with username [redacted] from 2603:c020:15:3b73::14 (US/United States/-)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-02 16:58:56
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 12:58:51.060115 2026] [security2:error] [pid 18281:tid 18281] [client 2603:c020:15:3b73::14:51218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mauriene.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mauriene.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akaYy0TgpH1aET7iHKqsyAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
MatStef132
2026-06-29 23:18:33
(5 days ago)
MatShield L7: blocked on dev.mathost.eu (ua-quarantined)
Bad Web Bot
Anonymous
2026-06-29 17:31:13
(5 days ago)
2026-06-29T19:30:48.117524+02:00 postfix/smtpd[1688978]: warning: unknown[2603:c020:15:3b73::14]: S ...
show more
2026-06-29T19:30:48.117524+02:00 postfix/smtpd[1688978]: warning: unknown[2603:c020:15:3b73::14]: SASL LOGIN authentication failed: (reason unavailable),
show less
Email Spam
Brute-Force
๐ซ๐ท
MatStef132
2026-06-26 11:43:28
(1 week ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-25 00:31:18
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 20:31:10.224686 2026] [security2:error] [pid 9737:tid 9737] [client 2603:c020:15:3b73::14:40412] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||twilighthackers.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "twilighthackers.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajx2zrVCoOsC8A0WSzZhSQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
HandyTreff.de
2026-06-24 14:52:15
(1 week ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -39.624 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -39.624 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
show less
Web App Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-24 13:31:19
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 09:31:11.005631 2026] [security2:error] [pid 11303:tid 11303] [client 2603:c020:15:3b73::14:50106] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||3pl.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "3pl.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajvcH7RTeI46T2Dn6-2nwgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2026-06-24 12:15:22
(1 week ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 23:22:41
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2603:c020:15:3b73::14 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 19:22:35.091666 2026] [security2:error] [pid 2850:tid 2850] [client 2603:c020:15:3b73::14:37746] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||go-901.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "go-901.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajsVO99NOYpPirm6FJMXPQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
maxxsense
2026-06-20 18:18:24
(2 weeks ago)
(postfix-unknown) Failed postfix unknown login with username [redacted] from 2603:c020:15:3b73::14 ( ...
show more
(postfix-unknown) Failed postfix unknown login with username [redacted] from 2603:c020:15:3b73::14 (US/United States/-)
show less
Hacking
๐ฉ๐ช
filstal.org
2026-06-18 15:01:05
(2 weeks ago)
CrowdSec: crowdsecurity/postfix-non-smtp-command
Email Spam
Hacking