๐บ๐ธ
TPI-Abuse
2026-07-04 22:29:25
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 (Unknown ...
show more
(mod_security) mod_security (id:225170) triggered by 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 18:29:16.658686 2026] [security2:error] [pid 20358:tid 20358] [client 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8:57682] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ardeeapps.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ardeeapps.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akmJPI2JLMz888C1XdeANwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 02:18:37
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 (Unknown ...
show more
(mod_security) mod_security (id:225170) triggered by 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 22:18:29.077858 2026] [security2:error] [pid 32673:tid 32693] [client 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8:61014] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||arizonasolutionsgroup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "arizonasolutionsgroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akhtdVPCzIKP4WPstz6pTAAAANI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 16:36:47
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 (Unknown ...
show more
(mod_security) mod_security (id:225170) triggered by 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 12:36:41.198963 2026] [security2:error] [pid 15954:tid 15954] [client 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8:61767] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||plazahacienda.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "plazahacienda.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akflGSFvhesO9pmoV3FFjwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 23:55:17
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 (Unknown ...
show more
(mod_security) mod_security (id:225170) triggered by 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 19:55:06.338724 2026] [security2:error] [pid 13722:tid 13722] [client 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8:61104] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||seagrovesrealty.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "seagrovesrealty.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akb6WpcrodsXtU-SPQ47HgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
stinpriza
2026-07-02 19:54:56
(3 days ago)
Web App Attack
Web App Attack
๐ฉ๐ช
4server
2026-07-02 08:03:18
(4 days ago)
[ThuJul0210:03:14.5557032026][security2:error][pid2701586:tid2701695][client2804:1600:10b:fe00:ecd6: ...
show more
[ThuJul0210:03:14.5557032026][security2:error][pid2701586:tid2701695][client2804:1600:10b:fe00:ecd6:fa31:baf2:dea8:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"mood4apps.com\"][uri\"/xmlrpc.php\"][unique_id\"akYbQlUE1dGJvzbth28gTwAAAQQ\"]
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
2026-07-01 14:38:40
(4 days ago)
Attac
Brute-Force
๐บ๐ธ
Mundo Bueno
2026-07-01 05:54:27
(5 days ago)
[ISILIA Protection v2.1] Tentative d'accรจs: /xmlrpc.php | Pays: BR | UA: Mozilla/5.0 (Windows NT 10. ...
show more
[ISILIA Protection v2.1] Tentative d'accรจs: /xmlrpc.php | Pays: BR | UA: Mozilla/5.0 (Windows NT 10.0; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/77.0.0.0 Safari/53
show less
Hacking
Web App Attack
๐บ๐ธ
Alvino
2026-07-01 00:11:51
(5 days ago)
Blocked due to abuseScore: 15
Web Spam
Hacking
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-06-30 02:43:02
(6 days ago)
Try to access /xmlrpc.php
Web App Attack
๐ณ๐ฑ
ipoac.nl
2026-06-30 02:37:27
(6 days ago)
-:443 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 - - [30/Jun/2026:04:37:26 +0200] - "POST /xmlrpc.php HT ...
show more
-:443 2804:1600:10b:fe00:ecd6:fa31:baf2:dea8 - - [30/Jun/2026:04:37:26 +0200] - "POST /xmlrpc.php HTTP/1.1" 403 6478 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36"
show less
Bad Web Bot