TPI-Abuse
2025-01-10 00:56:05
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 09 19:55:58.879425 2025] [security2:error] [pid 29317:tid 29317] [client 45.139.11.13:54111] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||blosser.info|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "blosser.info"] [uri "/wp-json/wp/v2/users"] [unique_id "Z4BwHhZk2_13-2tismmlMgAAABw"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-09 21:29:06
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 09 16:28:59.149922 2025] [security2:error] [pid 2246587:tid 2246587] [client 45.139.11.13:57075] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.theamarals.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.theamarals.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z4A_m8mqs_SyTTqX0CdTowAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-25 03:55:06
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 24 22:54:58.552414 2024] [security2:error] [pid 1499:tid 1520] [client 45.139.11.13:44628] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.dcmproductionsgroup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.dcmproductionsgroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z2uCEgBxisXiDPmVw0pyFQAAAE4"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-25 02:21:08
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 24 21:21:05.333756 2024] [security2:error] [pid 3735175:tid 3735175] [client 45.139.11.13:34086] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.charlescastleman.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.charlescastleman.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z2tsEYM6Rd0HRNhvFHSdTAAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-25 01:59:05
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 24 20:58:59.320732 2024] [security2:error] [pid 22832:tid 22832] [client 45.139.11.13:37401] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||kerrywood.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kerrywood.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z2tm43hF-P3AFaBmHf0FZQAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-25 01:16:41
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 24 20:16:34.999159 2024] [security2:error] [pid 410:tid 410] [client 45.139.11.13:45590] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||farsipraiseclub.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "farsipraiseclub.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z2tc8hLIAygRbOuadzBQiQAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-25 00:28:30
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 24 19:28:24.687856 2024] [security2:error] [pid 15449:tid 15449] [client 45.139.11.13:42507] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.darrenj.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.darrenj.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z2tRqCSxONcPpvd2h1yL4AAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-24 08:15:37
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 24 03:15:33.862282 2024] [security2:error] [pid 2316:tid 2346] [client 45.139.11.13:49210] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||rivercafeandbar.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rivercafeandbar.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z2ptpWCjjfC8fQrkuoLz7gAAAM8"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-06 01:59:30
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 20:59:24.589056 2024] [security2:error] [pid 32671:tid 414] [client 45.139.11.13:40994] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||amazinglips.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "amazinglips.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z1JafE6ErsqLn16jIWKEOAAAAdU"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-25 21:21:06
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 25 16:20:58.897383 2024] [security2:error] [pid 17221:tid 17221] [client 45.139.11.13:41762] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||theaccentsnet2019.mainstreetofficesuites.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "theaccentsnet2019.mainstreetofficesuites.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0TqOjt6ubWjJHUTEREQDgAAAB0"] show less
Brute-Force
Bad Web Bot
Web App Attack
georgengelmann
2024-04-18 13:19:17
(8 months ago)
Failed login attempt for spicetoshi
Brute-Force
Web App Attack
TPI-Abuse
2024-04-11 16:33:03
(9 months ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 11 12:32:57.321692 2024] [security2:error] [pid 10474] [client 45.139.11.13:46850] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||nocourtdivorcenm.crankyoldbroad.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nocourtdivorcenm.crankyoldbroad.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZhgQuT5mwDklatibBXEMCwAAACo"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-04-11 13:19:51
(9 months ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 11 09:19:45.102777 2024] [security2:error] [pid 25237] [client 45.139.11.13:34983] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||blog.mosherpit.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "blog.mosherpit.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZhfjceGC3Z6fUAe7PnXopAAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-04-11 11:22:42
(9 months ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 11 07:22:37.712733 2024] [security2:error] [pid 5218:tid 47636756379392] [client 45.139.11.13:45247] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||41bravo.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "41bravo.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZhfH_U3pzqBl-z19RXTVsAAAAMQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-04-11 09:48:44
(9 months ago)
(mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 45.139.11.13 (s286.bitcommand.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 11 05:48:39.940310 2024] [security2:error] [pid 30420] [client 45.139.11.13:35500] [client 45.139.11.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bitcoinpornhub.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bitcoinpornhub.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zhex9_30REmR5KcpooZXHgAAAAo"] show less
Brute-Force
Bad Web Bot
Web App Attack