Anonymous
2024-09-15 06:39:18
(2 days ago)
Malicious activity detected
Hacking
Web App Attack
Anonymous
2024-09-10 14:17:04
(6 days ago)
Brute forcing Wordpress login
Hacking
Web App Attack
MAGIC
2024-09-10 11:12:41
(1 week ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Anonymous
2024-09-08 04:44:02
(1 week ago)
Malicious activity detected
Hacking
Web App Attack
TPI-Abuse
2024-09-08 00:25:10
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 07 20:25:05.176755 2024] [security2:error] [pid 18451:tid 18451] [client 102.216.212.153:60180] [client 102.216.212.153] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.swcbsa.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.swcbsa.org"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Ztzu4aTRv8vrVlTzYP7ruQAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-07 19:44:13
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 07 15:44:05.557835 2024] [security2:error] [pid 5031:tid 5031] [client 102.216.212.153:50517] [client 102.216.212.153] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||persnicketyinc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "persnicketyinc.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ZtytBatEizEBfOXBmVC4VwAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-07 09:48:37
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 07 05:48:32.605529 2024] [security2:error] [pid 7577:tid 7577] [client 102.216.212.153:61445] [client 102.216.212.153] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||goseethenurse.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "goseethenurse.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ZtwhcHcbnF1b4KYeLDsWXAAAAAo"] show less
Brute-Force
Bad Web Bot
Web App Attack
theEngineer
2024-09-04 19:40:42
(1 week ago)
[20:40:40] 11: Scanning for Exploits - /wp-login.php
Hacking
Web App Attack
findlab
2024-08-30 11:00:06
(2 weeks ago)
Backdrop CMS module - malicious activity detected
Bad Web Bot
Web App Attack
Anonymous
2024-08-30 04:21:08
(2 weeks ago)
Brute forcing Wordpress login
Hacking
Web App Attack
TPI-Abuse
2024-08-26 11:56:31
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 26 07:56:26.212747 2024] [security2:error] [pid 1800:tid 1800] [client 102.216.212.153:51264] [client 102.216.212.153] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.grasslakepizzatime.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.grasslakepizzatime.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ZsxtapImV9w1WrMgLBVNIAAAABE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-24 04:26:07
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 24 00:26:01.694638 2024] [security2:error] [pid 4230:tid 4354] [client 102.216.212.153:19380] [client 102.216.212.153] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||rockabyecotons.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rockabyecotons.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Zslg2U2yuxPPqeVy1RWJLgAAAUw"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-20 10:08:21
(4 weeks ago)
(mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.216.212.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 20 06:08:14.061470 2024] [security2:error] [pid 21858:tid 21858] [client 102.216.212.153:45945] [client 102.216.212.153] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||furryfriendzy.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "furryfriendzy.org"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ZsRrDqMJy2zo0TJqJ8s08AAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
nationaleventpros.com
2024-08-17 22:57:45
(4 weeks ago)
WordPress login attempt
Brute-Force
deskpass.com
2024-08-17 02:40:01
(1 month ago)
GET /wp-login.php
Web App Attack