๐บ๐ธ
TPI-Abuse
2026-06-22 14:54:23
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 10:54:18.636110 2026] [security2:error] [pid 1791:tid 1791] [client 177.39.80.7:38038] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.innolympics.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.innolympics.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajlMmlajY0v3m5DGw4hrWwAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 14:26:02
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 10:25:55.377543 2026] [security2:error] [pid 17830:tid 17830] [client 177.39.80.7:55786] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||iplantotravel.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "iplantotravel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajlF8y71kfz4P0Fiz-vWuwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 03:06:22
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 23:06:13.151797 2026] [security2:error] [pid 3835:tid 3835] [client 177.39.80.7:40566] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cloudex.link|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cloudex.link"] [uri "/wp-json/wp/v2/users"] [unique_id "ajimpe3vYqq4BpKwcwyF0wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 23:09:11
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 19:09:07.099316 2026] [security2:error] [pid 5422:tid 5422] [client 177.39.80.7:43170] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.texascottagebakers.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.texascottagebakers.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajhvEzGwK8oHAR_e8-guyQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-21 21:25:31
(1 week ago)
Multiple WAF Violations
Web App Attack
Anonymous
2026-06-21 19:39:16
(1 week ago)
(XMLRPC) WP XMLPRC Attack 177.39.80.7 (BR/Brazil/ns6.vipsnet.com.br): 5 in the last 3600 secs; Ports ...
show more
(XMLRPC) WP XMLPRC Attack 177.39.80.7 (BR/Brazil/ns6.vipsnet.com.br): 5 in the last 3600 secs; Ports: *; Direction: 1
show less
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-06-21 01:54:46
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 21:54:41.460912 2026] [security2:error] [pid 21741:tid 21741] [client 177.39.80.7:41790] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.stop902.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.stop902.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajdEYXy8d7O99w2LTzNS2gAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 23:45:30
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 19:45:25.916794 2026] [security2:error] [pid 12202:tid 12202] [client 177.39.80.7:36440] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.jellisonrepair.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.jellisonrepair.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajcmFXn79IWdOmQV-yHTNAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
NotCool
2026-06-20 06:13:41
(2 weeks ago)
[7200] (WPLOGIN,XMLRPC) Login failure/trigger from 177.39.80.7 (BR/Brazil/ns6.vipsnet.com.br): 50 in ...
show more
[7200] (WPLOGIN,XMLRPC) Login failure/trigger from 177.39.80.7 (BR/Brazil/ns6.vipsnet.com.br): 50 in the last 3600 secs
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-19 14:56:28
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 10:56:21.252555 2026] [security2:error] [pid 2325:tid 2325] [client 177.39.80.7:50942] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||solarfarms.info|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "solarfarms.info"] [uri "/wp-json/wp/v2/users"] [unique_id "ajVYlayec8QSDoVXJifWEAAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
debestelapp
2026-06-19 10:00:03
(2 weeks ago)
Exploited Host
๐บ๐ธ
TPI-Abuse
2026-06-18 11:04:18
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 07:04:10.821633 2026] [security2:error] [pid 15775:tid 15775] [client 177.39.80.7:57556] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.bikinitweets.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bikinitweets.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajPQqmpX7RgHxR3EN46UTgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 03:33:06
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 23:32:59.326934 2026] [security2:error] [pid 30594:tid 30594] [client 177.39.80.7:44672] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.nancyscafeandcatering.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nancyscafeandcatering.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajNm64oSKFc-j9WLM0fdFgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 19:33:54
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 15:33:50.786576 2026] [security2:error] [pid 26615:tid 26615] [client 177.39.80.7:33256] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||market1st.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "market1st.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajL2ng-nImofAOA_rff2mwAAACw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 13:45:13
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 177.39.80.7 (ns6.vipsnet.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 09:45:08.276771 2026] [security2:error] [pid 18668:tid 18668] [client 177.39.80.7:36548] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||drwolberg.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drwolberg.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajKk5LYnbeU6g_B0XHl6QwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack