๐ซ๐ท
SpaceHost-Server
2026-06-22 22:29:07
(1 week ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 14:00:08
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 10:00:02.119194 2026] [security2:error] [pid 3551:tid 3551] [client 192.249.120.223:41270] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.pcga.golf|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.pcga.golf"] [uri "/wp-json/wp/v2/users"] [unique_id "ajk_4mJ0LKfSulr3dAxxwgAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-22 11:52:16
(1 week ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 10:57:07
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 06:57:00.650538 2026] [security2:error] [pid 10022:tid 10022] [client 192.249.120.223:59816] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.innolympics.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.innolympics.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajkU_P-TEsv1fsdZLYq0jwAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-21 22:28:12
(1 week ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 17:07:11
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 13:07:05.029736 2026] [security2:error] [pid 26044:tid 26044] [client 192.249.120.223:58370] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.alafiariverrendezvous.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.alafiariverrendezvous.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajgaOco_zjqSDb-yWpi50QAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-21 14:41:54
(1 week ago)
[ns41.kdns.gr] httpd-suspicious-path: sites=apnoia.gr; logs=/var/log/httpd/domains/apnoia.gr.log; sa ...
show more
[ns41.kdns.gr] httpd-suspicious-path: sites=apnoia.gr; logs=/var/log/httpd/domains/apnoia.gr.log; samples=/wp-json/wp/v2/users | /?author=1 | /?author=2
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 23:05:55
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 19:05:52.305983 2026] [security2:error] [pid 30048:tid 30048] [client 192.249.120.223:39210] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.smilingorc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.smilingorc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajR50EYjmRGb9Rmk41jewgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-18 02:06:40
(1 week ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-18 01:49:29
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 21:49:24.629910 2026] [security2:error] [pid 5453:tid 5453] [client 192.249.120.223:59840] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.rockinr.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.rockinr.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajNOpEyS5_H8DVYrKQjKbQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 16:05:46
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 12:05:39.311946 2026] [security2:error] [pid 7981:tid 7981] [client 192.249.120.223:53006] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.cienmalos.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.cienmalos.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajLF0zZw-nys4W3EH2bmwgAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 14:29:45
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 10:29:39.390025 2026] [security2:error] [pid 6432:tid 6432] [client 192.249.120.223:39440] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.lenorasflowers.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.lenorasflowers.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajKvU5xTBO36uNlqGHryhAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 06:37:25
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 02:37:21.060841 2026] [security2:error] [pid 15672:tid 15672] [client 192.249.120.223:54852] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.67ronin.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.67ronin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajJAocqxTQBseMDkacfU9wAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 23:14:33
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 192.249.120.223 (server.hafdigital.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 19:14:27.596916 2026] [security2:error] [pid 11354:tid 11367] [client 192.249.120.223:59524] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bortec-corp.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bortec-corp.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajHY08E-wwvQMmyrf8cBxQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
R.G.
2026-06-16 10:05:44
(2 weeks ago)
(XMLRPCorWHATEVER) Get lost please 192.249.120.223 (US/United States/server.hafdigital.com): 3 in th ...
show more
(XMLRPCorWHATEVER) Get lost please 192.249.120.223 (US/United States/server.hafdigital.com): 3 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack