Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 25 16:26:01.790289 2024] [security2:error] [pid 2039028:tid 2039028] [client 156.233.90.136:52317] [client 156.233.90.136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||secuencia.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "secuencia.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0TraRmqO6rUGdFzWIEjfAAAABA"], referer: https://www.google.com show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 25 12:00:08.933719 2024] [security2:error] [pid 17819:tid 17819] [client 156.233.90.136:47335] [client 156.233.90.136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||serpentstudios.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "serpentstudios.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0StGPh9Vd-MYEK6Th65igAAAAU"], referer: https://www.google.com show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 24 23:09:18.933562 2024] [security2:error] [pid 11463:tid 11463] [client 156.233.90.136:43489] [client 156.233.90.136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||fales.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fales.org"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0P4bh4g4U6WYIw8ipPWgQAAAA8"], referer: https://www.google.com show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 24 20:54:25.453036 2024] [security2:error] [pid 11168:tid 11168] [client 156.233.90.136:10313] [client 156.233.90.136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||icro.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "icro.net"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0PY0Q4akE1a-5MHe3YGzgAAAA0"], referer: https://www.google.com show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 17 06:02:46.330656 2024] [security2:error] [pid 19003:tid 19003] [client 156.233.90.136:10597] [client 156.233.90.136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||miszewski.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "miszewski.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZznNVr9be98DnLPnW1K34AAAAAY"], referer: https://www.google.com show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 17 02:51:46.529894 2024] [security2:error] [pid 18545:tid 18545] [client 156.233.90.136:37803] [client 156.233.90.136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||catzpaw.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "catzpaw.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZzmgkioEoV7UEkBtBLxo4gAAACE"], referer: https://www.google.com show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Anonymous
|
|
Malicious activity detected
|
Hacking
Web App Attack
|
|
Anonymous
|
|
XMLRPC Hack Attempts
|
Hacking
Brute-Force
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 156.233.90.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 09 07:41:09.587530 2024] [security2:error] [pid 3676452:tid 3676452] [client 156.233.90.136:58497] [client 156.233.90.136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bendersite.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bendersite.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zy9YZbJnb47wfKgSmbJiJQAAAAM"], referer: https://www.google.com show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|