Anonymous
2024-10-04 12:02:25
(1 week ago)
Web attack
Bad Web Bot
Web App Attack
hostseries
2024-09-18 14:31:35
(3 weeks ago)
Trigger: LF_MODSEC
Brute-Force
TPI-Abuse
2024-09-18 14:23:03
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 18 10:22:57.321594 2024] [security2:error] [pid 6000:tid 6000] [client 212.102.57.24:64814] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.dawnsendeavors.com"] [uri "/css/wp-config.php"] [unique_id "ZuriQdSLt_wUgXENabgS9QAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
clapper
2024-09-18 06:16:29
(3 weeks ago)
212.102.57.24 (DE/Germany/unn-212-102-57-24.cdn77.com), more than 200 Apache 404 hits in the last 36 ... show more 212.102.57.24 (DE/Germany/unn-212-102-57-24.cdn77.com), more than 200 Apache 404 hits in the last 3600 secs; ID: Dan show less
Brute-Force
Bad Web Bot
Rizzy
2024-09-17 22:11:21
(3 weeks ago)
Multiple WAF Violations
Brute-Force
Web App Attack
Anonymous
2024-09-17 20:03:45
(3 weeks ago)
wordpress-trap
Web App Attack
cmbplf
2024-09-17 06:58:23
(3 weeks ago)
6.382 4xx requests in 1 hour (2w5d23h)
Brute-Force
Bad Web Bot
TPI-Abuse
2024-09-17 00:49:09
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 16 20:49:05.616364 2024] [security2:error] [pid 26491:tid 26491] [client 212.102.57.24:51784] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "austli.com"] [uri "/css/wp-config.php"] [unique_id "ZujSAcV_1RWt-W9jrnwtEwAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-16 23:12:40
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 16 19:12:33.103640 2024] [security2:error] [pid 11812:tid 11812] [client 212.102.57.24:52038] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yfuas.com"] [uri "/css/wp-config.php"] [unique_id "Zui7YQwqQO5J9x4P1EMvnAAAABA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-16 19:29:14
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 16 15:29:09.589284 2024] [security2:error] [pid 821877:tid 821881] [client 212.102.57.24:50008] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shieldsenterprisesusa.com"] [uri "/css/wp-config.php"] [unique_id "ZuiHBQ0MlTkVaC-TzlQuQAAAAII"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-16 16:49:52
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 16 12:49:48.143662 2024] [security2:error] [pid 29730:tid 29730] [client 212.102.57.24:63983] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cleaningmedical.com"] [uri "/css/wp-config.php"] [unique_id "ZuhhrBUlYi6Dnl_pGxo7MAAAACA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-16 12:56:32
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 16 08:56:25.573286 2024] [security2:error] [pid 474334:tid 474334] [client 212.102.57.24:50077] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "airtechconsulting.com"] [uri "/css/wp-config.php"] [unique_id "Zugq-fKmcekOsFTJUb_blwAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-16 11:20:37
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 16 07:20:31.204346 2024] [security2:error] [pid 10772:tid 10772] [client 212.102.57.24:59725] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "datinggewinner.com"] [uri "/css/wp-config.php"] [unique_id "ZugUf_DchwnifGMx1yBjPwAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-16 09:34:59
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 16 05:34:52.220922 2024] [security2:error] [pid 3564:tid 3564] [client 212.102.57.24:59090] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "omahareact.org"] [uri "/css/wp-config.php"] [unique_id "Zuf7vGPPVf7O-YP5ZP26vwAAABQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-16 09:01:56
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 ... show more (mod_security) mod_security (id:210492) triggered by 212.102.57.24 (unn-212-102-57-24.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 16 05:01:49.460002 2024] [security2:error] [pid 17314:tid 17314] [client 212.102.57.24:54921] [client 212.102.57.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lesdwiniarczyk.com"] [uri "/css/wp-config.php"] [unique_id "Zufz_YGBB6d1q6h_OAFcEgAAABA"] show less
Brute-Force
Bad Web Bot
Web App Attack