๐บ๐ธ
TPI-Abuse
2026-07-04 08:52:49
(1 hour ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 04:52:42.750393 2026] [security2:error] [pid 28176:tid 28211] [client 209.172.2.80:41698] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||emehache.com.emehache.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "emehache.com.emehache.net"] [uri "/wp-json/wp/v2/users/9"] [unique_id "akjJ2vJ_ltpxi0oETgl3hQAAAY8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 03:16:24
(7 hours ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 23:16:18.011424 2026] [security2:error] [pid 8236:tid 8236] [client 209.172.2.80:45618] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cassimandabdallah.williamgilcher.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cassimandabdallah.williamgilcher.com"] [uri "/wp-json/wp/v2/users/9"] [unique_id "akh7AjH_d0EWNdUVkMKP3wAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 01:41:33
(8 hours ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 21:41:24.774731 2026] [security2:error] [pid 15575:tid 15575] [client 209.172.2.80:55764] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||stacyfarm.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "stacyfarm.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akhkxLTZOkUrAEJK376PxAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-04 01:24:36
(8 hours ago)
indigi-print-merch.com.au:443 209.172.2.80 - - [04/Jul/2026:11:24:34 +1000] "GET /?author=2&feed=rss ...
show more
indigi-print-merch.com.au:443 209.172.2.80 - - [04/Jul/2026:11:24:34 +1000] "GET /?author=2&feed=rss2 HTTP/1.1" 404 371779 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36, Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 21:37:48
(12 hours ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 17:37:42.581410 2026] [security2:error] [pid 27640:tid 27640] [client 209.172.2.80:47828] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||astglobaltech.com.greenlight.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "astglobaltech.com.greenlight.us"] [uri "/wp-json/wp/v2/users"] [unique_id "akgrprebzyMgSCP4uVRu0AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 21:04:21
(13 hours ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 17:04:16.259023 2026] [security2:error] [pid 3327:tid 3327] [client 209.172.2.80:41360] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||major33.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "major33.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akgj0DzLHuXB3KYxPL-R2AAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 18:32:06
(15 hours ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 14:32:01.114450 2026] [security2:error] [pid 23545:tid 23856] [client 209.172.2.80:43090] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||leadingedgesupply.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "leadingedgesupply.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akgAIfFYGD74zimrWy29RQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 15:07:57
(19 hours ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 11:07:51.439059 2026] [security2:error] [pid 26209:tid 26209] [client 209.172.2.80:34408] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||greenmountainfeeds.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "greenmountainfeeds.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akfQRyaEGGwWIzjcMS5SqAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 13:10:21
(21 hours ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 09:10:18.715422 2026] [security2:error] [pid 30096:tid 30096] [client 209.172.2.80:56024] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||thefrontporchoffering.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "thefrontporchoffering.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ake0ugX772LXJTlzygR7UgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 12:44:30
(21 hours ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 08:44:25.042744 2026] [security2:error] [pid 2254:tid 2254] [client 209.172.2.80:34922] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||takemehomedogrescue.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "takemehomedogrescue.org"] [uri "/wp-json/wp/v2/users"] [unique_id "akeuqeevfoiJPb2UrCI1SwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
stinpriza
2026-07-03 12:05:23
(22 hours ago)
Web App Attack
Web App Attack
๐ซ๐ฎ
YF
2026-07-03 11:00:40
(23 hours ago)
WordPress author enumeration
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-03 09:47:38
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 09:09:38
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 05:09:32.680273 2026] [security2:error] [pid 16216:tid 16216] [client 209.172.2.80:52014] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||baselinesc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "baselinesc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akd8TOK5b63ohzvlg9nOeQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 05:51:10
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 209.172.2.80 (server104.orangehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:51:04.225847 2026] [security2:error] [pid 30251:tid 30251] [client 209.172.2.80:40744] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||stinsonbeachsurfandkayak.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "stinsonbeachsurfandkayak.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akdNyPo0Ik8_y_Sgd8kDWgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack