๐บ๐ธ
TPI-Abuse
2026-06-30 22:32:29
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 104.245.240.114 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 104.245.240.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 18:32:24.849843 2026] [security2:error] [pid 31654:tid 31676] [client 104.245.240.114:29105] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||6925kingslynn.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "6925kingslynn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akRD-PmByilt8H3YHc4i3QAAAFA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 17:39:11
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 104.245.240.114 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 104.245.240.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 13:39:03.788784 2026] [security2:error] [pid 14819:tid 14819] [client 104.245.240.114:31493] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||valbreniscrivalbo.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "valbreniscrivalbo.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai2Vt7zA4xDbHBT86py4GgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 20:01:29
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 104.245.240.114 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 104.245.240.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 16:01:22.498637 2026] [security2:error] [pid 8247:tid 8247] [client 104.245.240.114:33579] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||airplanechristmascards.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "airplanechristmascards.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aihxErJQ51lE4nrkiZMFGAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
ventura-websolutions.de
2026-03-02 16:04:51
(3 months ago)
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authenti ...
show more
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:19 server postfix/smtpd[852566]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:29 server postfix/smtpd[852567]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
show less
Brute-Force
๐ง๐ท
hostseries
2026-02-23 18:32:12
(4 months ago)
Trigger: LF_DISTATTACK
Brute-Force
๐ฎ๐ฉ
sockominfo
2026-02-05 16:00:31
(4 months ago)
Reported by TangerangKota-CSIRT. Status: MALICIOUS
Hacking
Web App Attack
๐ฎ๐ฉ
sockominfo
2026-02-05 14:57:00
(4 months ago)
[WAZUH] Mixed case extension detected (case variation bypass)
Hacking
Web App Attack
๐บ๐ธ
Psycho Solutions LLC
2026-01-22 15:45:35
(5 months ago)
Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-json/wp/v2/users - User A ...
show more
Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-json/wp/v2/users - User Agent: N/A - Timestamp: 1/22/2026 3:45 pm (UTC-6)
show less
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
Psycho Solutions LLC
2026-01-22 13:54:25
(5 months ago)
Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-json/wp/v2/users - User A ...
show more
Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-json/wp/v2/users - User Agent: N/A - Timestamp: 1/22/2026 1:54 pm (UTC-6)
show less
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐ซ๐ท
ventura-websolutions.de
2026-01-01 15:22:56
(6 months ago)
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authenti ...
show more
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:19 server postfix/smtpd[852566]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:29 server postfix/smtpd[852567]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
show less
Brute-Force
๐ซ๐ท
ventura-websolutions.de
2025-11-03 08:47:19
(7 months ago)
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authenti ...
show more
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:19 server postfix/smtpd[852566]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:29 server postfix/smtpd[852567]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
show less
Brute-Force
๐ฉ๐ช
ventura-websolutions.de
2025-09-03 11:45:49
(9 months ago)
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authenti ...
show more
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:19 server postfix/smtpd[852566]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:29 server postfix/smtpd[852567]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
show less
Brute-Force
๐ฉ๐ช
ventura-websolutions.de
2025-06-15 01:29:12
(1 year ago)
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authenti ...
show more
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:19 server postfix/smtpd[852566]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:29 server postfix/smtpd[852567]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
show less
Brute-Force
๐ฉ๐ช
ventura-websolutions.de
2025-05-17 00:03:17
(1 year ago)
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authenti ...
show more
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:19 server postfix/smtpd[852566]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:29 server postfix/smtpd[852567]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
show less
Brute-Force
๐ฉ๐ช
ventura-websolutions.de
2025-05-04 00:03:46
(1 year ago)
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authenti ...
show more
Apr 9 18:19:13 server postfix/smtpd[852564]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:19 server postfix/smtpd[852566]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr 9 18:19:29 server postfix/smtpd[852567]: warning: unknown[104.245.240.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
show less
Brute-Force