Anonymous
2024-08-29 09:45:33
(2 weeks ago)
wordpress-trap
Web App Attack
TPI-Abuse
2024-08-29 07:44:53
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 29 03:44:47.471012 2024] [security2:error] [pid 12183:tid 12183] [client 108.165.243.226:16953] [client 108.165.243.226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.areafinancieratf.com"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "ZtAm70QeYSj0PPrHtEAxZgAAAAQ"], referer: http://areafinancieratf.com/wp-content/plugins/wp-config.php show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-08-29 00:52:33
(2 weeks ago)
wordpress-trap
Web App Attack
WeekendWeb
2024-08-28 23:19:44
(2 weeks ago)
Wordpress Vunerability attack
Web App Attack
TPI-Abuse
2024-08-28 21:26:42
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 28 17:26:38.953381 2024] [security2:error] [pid 14260:tid 14260] [client 108.165.243.226:55241] [client 108.165.243.226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "notearsweb.com"] [uri "/wp-config.php"] [unique_id "Zs-WDsAMleDI6x5bKUHMlgAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
MSZ
2024-08-28 20:36:01
(2 weeks ago)
Blocked by Fail2Ban (apache-auth-all)
Hacking
Brute-Force
Web App Attack
TPI-Abuse
2024-08-28 14:23:57
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 28 10:23:53.691783 2024] [security2:error] [pid 25553:tid 25553] [client 108.165.243.226:50197] [client 108.165.243.226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "briannalls.com"] [uri "/wp-config.php"] [unique_id "Zs8y-ZmWDdxJPhTPSEqgigAAAA4"] show less
Brute-Force
Bad Web Bot
Web App Attack
octageeks.com
2024-08-28 04:08:38
(2 weeks ago)
Wordpress malicious attack:[octa404]
Web App Attack
TPI-Abuse
2024-08-27 23:32:58
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 27 19:32:50.815014 2024] [security2:error] [pid 13253:tid 13253] [client 108.165.243.226:42375] [client 108.165.243.226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "musiclipsapp.com"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "Zs5iIvc6JuoDAkkHLMP6kAAAABg"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-08-27 20:04:34
(2 weeks ago)
Excessive crawling/scraping
Hacking
Brute-Force
Anonymous
2024-08-27 19:34:55
(2 weeks ago)
wordpress-trap
Web App Attack
TPI-Abuse
2024-08-27 18:45:40
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 27 14:45:33.941349 2024] [security2:error] [pid 1584248:tid 1584290] [client 108.165.243.226:34131] [client 108.165.243.226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mhrocket.com"] [uri "/wp-config.php"] [unique_id "Zs4eze8hFzRCWw0P7jnm7gAAAEg"], referer: http://mhrocket.link/wp-config.php show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-27 17:44:13
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 27 13:44:06.180795 2024] [security2:error] [pid 1610:tid 1610] [client 108.165.243.226:53469] [client 108.165.243.226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "myuscpa.com"] [uri "/wp-config.php"] [unique_id "Zs4QZp_J6gfTkfrc7c9LrgAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-27 10:17:34
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 27 06:17:31.331862 2024] [security2:error] [pid 473:tid 473] [client 108.165.243.226:8021] [client 108.165.243.226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "megaandina.com"] [uri "/wp-config.php"] [unique_id "Zs2nuy-L8Tj5gVPR3LxhjgAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-27 09:41:33
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 108.165.243.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 27 05:41:26.248408 2024] [security2:error] [pid 7318:tid 7318] [client 108.165.243.226:32559] [client 108.165.243.226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mylert.org"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "Zs2fRotLCGlNoZ6tQLPmLwAAAAw"] show less
Brute-Force
Bad Web Bot
Web App Attack