Anonymous
2026-06-22 19:14:13
(2 weeks ago)
[server.tmg.gr] httpd-suspicious-path: sites=aidshep2017.gr; logs=/var/log/httpd/domains/aidshep2017 ...
show more
[server.tmg.gr] httpd-suspicious-path: sites=aidshep2017.gr; logs=/var/log/httpd/domains/aidshep2017.gr.log; samples=/wp-json/wp/v2/users | /?author=1 | /?author=2
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 00:10:24
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 20:10:18.745384 2026] [security2:error] [pid 28216:tid 28216] [client 213.142.130.123:33920] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.d365geek.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.d365geek.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajh9alfBI2QWz20BTQY0sgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 23:19:57
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 19:19:53.811996 2026] [security2:error] [pid 27778:tid 27778] [client 213.142.130.123:34726] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.transcapitalsolutions.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.transcapitalsolutions.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajhxmcRW7DV0vzGcl_StEgAAACg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-18 20:26:10
(2 weeks ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-18 17:07:35
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 13:07:30.152546 2026] [security2:error] [pid 15579:tid 15579] [client 213.142.130.123:41970] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.fractalsky.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fractalsky.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajQl0vYwqxoKlWGhzO9oxwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 09:38:05
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 05:37:56.640469 2026] [security2:error] [pid 20969:tid 20969] [client 213.142.130.123:54280] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.naominixon.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.naominixon.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajO8dBoh1NMG-fSEOW-VfgAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 03:36:47
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:36:38.938438 2026] [security2:error] [pid 4767:tid 4767] [client 213.142.130.123:55056] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jazziiafoundation.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jazziiafoundation.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ai9zRvft3D1f6A6N90fXEQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-14 23:54:03
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 19:53:55.755280 2026] [security2:error] [pid 20224:tid 20224] [client 213.142.130.123:43922] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.thomasgardner.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.thomasgardner.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai8_E4ncjxlJNhIehivQQwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-14 22:40:25
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 18:40:20.138692 2026] [security2:error] [pid 26701:tid 26701] [client 213.142.130.123:52726] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.doctoredwinalvarez.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.doctoredwinalvarez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai8t1DM_DeEA6yWSTNtT5wAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 21:45:41
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 17:45:37.163251 2026] [security2:error] [pid 14399:tid 14399] [client 213.142.130.123:40244] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.jennyfiore.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.jennyfiore.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai3PgUvaHMbh-d-tij0FFAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 20:03:32
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 16:03:23.609153 2026] [security2:error] [pid 13494:tid 13494] [client 213.142.130.123:33362] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.batesstrategygroup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.batesstrategygroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai23ixf3G9VM1vc3g8mIdwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 15:12:28
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:12:22.856140 2026] [security2:error] [pid 25623:tid 25623] [client 213.142.130.123:36138] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.whodatnation.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.whodatnation.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai1zVg22iTveTw8xnJzkQQAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 12:33:43
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 08:33:39.433499 2026] [security2:error] [pid 6188:tid 6188] [client 213.142.130.123:53006] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.97films.media|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.97films.media"] [uri "/wp-json/wp/v2/users"] [unique_id "ai1OI8fO5RgKOQP6DvP5VQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-10 07:30:03
(3 weeks ago)
Web App Attack, Hacking
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-10 06:14:59
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 213.142.130.123 (lhost4.websahibi.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 02:14:54.926407 2026] [security2:error] [pid 10800:tid 10800] [client 213.142.130.123:43390] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.soundtrax.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.soundtrax.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aikA3pdzZJ8ZGyQKE0JYxwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack