๐บ๐ธ
TPI-Abuse
2026-07-03 08:41:07
(13 hours ago)
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:41:00.835296 2026] [security2:error] [pid 26094:tid 26094] [client 14.225.211.78:40056] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||americanacademyofteachersofsinging.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "americanacademyofteachersofsinging.org"] [uri "/wp-json/wp/v2/users/3"] [unique_id "akd1nML9LIMjZw_SWAjfxwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐น
Malta
2026-07-03 00:15:07
(21 hours ago)
14.225.211.78 - - [03/Jul/2026:02:15:07 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh ...
show more
14.225.211.78 - - [03/Jul/2026:02:15:07 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 17:39:18
(5 days ago)
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 13:39:10.230571 2026] [security2:error] [pid 21196:tid 21196] [client 14.225.211.78:54344] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jerryfeil.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jerryfeil.com"] [uri "/wp-json/wp/v2/users/6"] [unique_id "akFcPnoSlsuRolfcb1p0qQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-06-22 21:31:17
(1 week ago)
Known malicious PHP file or CMS probe
Web App Attack
๐จ๐ญ
4server
2026-06-22 04:48:00
(1 week ago)
[MonJun2206:47:54.8498342026][security2:error][pid2793775:tid2793823][client14.225.211.78:0]ModSecur ...
show more
[MonJun2206:47:54.8498342026][security2:error][pid2793775:tid2793823][client14.225.211.78:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"vetreriaperletti.ch\"][uri\"/xmlrpc.php\"][unique_id\"aji-epNyje6HxPdOwhqRwgAAAAw\"]
show less
Hacking
Web App Attack
๐ซ๐ท
solution.it
2026-06-21 22:02:20
(1 week ago)
[Mon Jun 22 00:02:20.012811 2026] [php7:error] [pid 1722352:tid 1722352] [client 14.225.211.78:33792 ...
show more
[Mon Jun 22 00:02:20.012811 2026] [php7:error] [pid 1722352:tid 1722352] [client 14.225.211.78:33792] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat
show less
Web App Attack
๐บ๐ธ
nationaleventpros.com
2026-06-21 08:24:44
(1 week ago)
WordPress login attempt
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-20 01:05:06
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 21:04:54.962279 2026] [security2:error] [pid 27609:tid 27609] [client 14.225.211.78:49278] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||drgtek.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drgtek.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajXnNgyNq3n-ZXqxKkc7FAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 23:45:58
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 19:45:50.961451 2026] [security2:error] [pid 20469:tid 20469] [client 14.225.211.78:59354] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.market1st.bridgital.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.market1st.bridgital.com"] [uri "/wp-json/wp/v2/users/10"] [unique_id "ajXUrm-n5Exal-uw63yJsgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 19:32:58
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 15:32:53.439869 2026] [security2:error] [pid 4312:tid 4312] [client 14.225.211.78:55132] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||toepferlab.toepfer.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "toepferlab.toepfer.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajWZZXyTbQao9u7x5iY-rQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 07:33:15
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 03:33:07.343470 2026] [security2:error] [pid 1939:tid 1939] [client 14.225.211.78:43620] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||n4fh.cosentient.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "n4fh.cosentient.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajTws-Cxj1-VgGWckbdIwgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 01:44:03
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 21:43:56.577652 2026] [security2:error] [pid 4318:tid 4344] [client 14.225.211.78:40210] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||woodamy.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "woodamy.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajSe3DKfi__xGc2qu3lp1QAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
ipoac.nl
2026-06-19 00:35:30
(2 weeks ago)
2026-06-19T02:35:29.289221+02:00 ipoac.nl wordpress(-)-: Authentication failure for-from 14.225.211. ...
show more
2026-06-19T02:35:29.289221+02:00 ipoac.nl wordpress(-)-: Authentication failure for-from 14.225.211.78
show less
Web App Attack
๐ฉ๐ช
Hazzard
2026-06-17 18:14:11
(2 weeks ago)
(wordpress) Failed wordpress login from 14.225.211.78 (VN/Vietnam/-/-/-/[redacted]): (CF_ENABLE)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-15 23:44:49
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 14.225.211.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 19:44:42.676841 2026] [security2:error] [pid 23026:tid 23026] [client 14.225.211.78:55390] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||graymatterofdc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "graymatterofdc.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajCOarB2kyVvOguU-zDw-AAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack