๐บ๐ธ
TPI-Abuse
2024-12-18 21:02:48
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 18 16:02:41.187021 2024] [security2:error] [pid 766:tid 779] [client 146.190.95.28:63804] [client 146.190.95.28] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.sloveniaflyfishing.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.sloveniaflyfishing.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z2M4cTOrujC69jcvjELuSwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-18 20:08:49
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 18 15:08:42.697807 2024] [security2:error] [pid 2145211:tid 2145211] [client 146.190.95.28:34150] [client 146.190.95.28] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.inverzona.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.inverzona.com"] [uri "/aboutmetcapital/wp-json/wp/v2/users/"] [unique_id "Z2Mryh3jyk9_huZNnk5flQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-18 16:57:37
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 18 11:57:30.086804 2024] [security2:error] [pid 1438588:tid 1438588] [client 146.190.95.28:55472] [client 146.190.95.28] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||preserveourcommunity.com.jimgrenier.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "preserveourcommunity.com.jimgrenier.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z2L--l4pGZhV-DwQGLIMwgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2024-12-18 16:09:51
(1 year ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ฌ๐ง
Apache
2024-12-18 15:56:54
(1 year ago)
(mod_security) mod_security (id:210410) triggered by 146.190.95.28 (SG/Singapore/-): 5 in the last 3 ...
show more
(mod_security) mod_security (id:210410) triggered by 146.190.95.28 (SG/Singapore/-): 5 in the last 300 secs
show less
Brute-Force
Web App Attack
๐ฉ๐ช
conseilgouz
2024-12-18 14:38:20
(1 year ago)
coe-7 : Trying access unauthorized files/dir=>//wp-includes/wlwmanifest.xml
Hacking
๐บ๐ธ
TPI-Abuse
2024-12-18 02:26:36
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 17 21:26:29.569122 2024] [security2:error] [pid 701620:tid 701620] [client 146.190.95.28:18666] [client 146.190.95.28] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.konahawaii.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.konahawaii.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z2Iy1Z5UIvNOnIaQAVQJ-gAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2024-12-17 10:01:22
(1 year ago)
Xmlrpc Caught (6)
Brute-Force
Web App Attack
Anonymous
2024-12-17 09:00:12
(1 year ago)
(wordpress) Failed wordpress login from 146.190.95.28 (SG/Singapore/-)
Brute-Force
Anonymous
2024-12-16 20:16:04
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ฉ๐ช
Vegascosmetics
2024-12-16 07:01:36
(1 year ago)
Kingcopy(AI-IDS):IP does Excessive BAD Request Abuse
Bad Web Bot
๐ฆ๐บ
2000cn.com.au
2024-12-16 02:52:30
(1 year ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-probing
Hacking
Web App Attack
๐ฉ๐ช
Vegascosmetics
2024-12-15 22:51:19
(1 year ago)
Kingcopy(AI-IDS):IP is Probing for Wordpress vulnerabilities WTF:Banned
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-15 21:10:55
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 146.190.95.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 15 16:10:50.922266 2024] [security2:error] [pid 19846:tid 19846] [client 146.190.95.28:54759] [client 146.190.95.28] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.isslv.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.isslv.net"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z19F2k7pVYpfuODY4yENWgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
weblite
2024-12-15 17:36:06
(1 year ago)
WP_XMLRPC_ABUSE
Brute-Force
Web App Attack