Anonymous
2024-12-04 08:11:39
(5 days ago)
VPN IP
Brute-Force
TPI-Abuse
2024-11-28 09:47:53
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 104.207.45.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.45.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 28 04:47:49.341084 2024] [security2:error] [pid 2686426:tid 2686426] [client 104.207.45.215:52771] [client 104.207.45.215] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||dunningtons.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dunningtons.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0g8RUuDqFbQxlsJvQy_7QAAAAQ"], referer: https://www.google.com show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-21 18:08:15
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 104.207.45.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.45.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 21 13:08:10.082815 2024] [security2:error] [pid 6999:tid 7026] [client 104.207.45.215:23605] [client 104.207.45.215] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||djkirby.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "djkirby.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zz93CoR9WwdKB_uc_s4FkgAAAAg"], referer: https://www.google.com show less
Brute-Force
Bad Web Bot
Web App Attack
zynex
2024-11-15 03:43:22
(3 weeks ago)
URL Probing: /wp-login.php
Web App Attack
nyuuzyou
2024-11-11 17:13:51
(4 weeks ago)
Intensive scraping: /web?s=Roubaix%20France%20Vente%2C%20collecte%20et%20rachat%20de%20livres%20d%26 ... show more Intensive scraping: /web?s=Roubaix%20France%20Vente%2C%20collecte%20et%20rachat%20de%20livres%20d%26%23039%3Boccasion%20%7C%20Recyclivre&country=ho-ho&scraper=brave. User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36. show less
Bad Web Bot
TPI-Abuse
2024-11-09 10:52:04
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 104.207.45.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.45.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 09 05:51:58.613074 2024] [security2:error] [pid 3534802:tid 3534802] [client 104.207.45.215:53409] [client 104.207.45.215] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||howse.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "howse.us"] [uri "/wp-json/wp/v2/users"] [unique_id "Zy8-zl_wI28_c7zcOFlKzgAAAAY"], referer: https://www.google.com show less
Brute-Force
Bad Web Bot
Web App Attack
zynex
2024-11-06 23:51:48
(1 month ago)
URL Probing: /de/wp-login.php
Web App Attack
wil.com
2024-06-26 07:41:41
(5 months ago)
GlobalProtect login attempts with user andrew.
VPN IP
Brute-Force
Anonymous
2024-06-22 22:17:11
(5 months ago)
VPN Authentication Brute Force
Brute-Force
Brute-Force
Anonymous
2024-06-21 14:29:03
(5 months ago)
VPN Authentication Brute Force info
Brute-Force
Brute-Force
MrDD
2024-06-11 16:02:25
(5 months ago)
Attempted brute force attack on Cisco VPN
Brute-Force
Anonymous
2024-06-05 18:15:33
(6 months ago)
Brute-Force