Anonymous
2024-01-07 03:56:17
(1 year ago)
Spam Detected:MTF
Web Spam
Dolphi
2023-12-28 22:50:10
(1 year ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
TPI-Abuse
2023-12-27 00:37:11
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 212.30.36.210 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.30.36.210 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 26 19:37:05.165524 2023] [security2:error] [pid 29483] [client 212.30.36.210:21037] [client 212.30.36.210] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.uccgt.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.uccgt.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZYtxsU5fsFxuIAE9y_oGGgAAABI"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2023-11-28 22:46:51
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 212.30.36.210 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.30.36.210 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 28 17:46:43.428512 2023] [security2:error] [pid 19948] [client 212.30.36.210:18419] [client 212.30.36.210] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||buyiteracareblower.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "buyiteracareblower.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZWZt02diDrfg3ulFsV4VbQAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2023-11-27 04:33:56
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 212.30.36.210 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.30.36.210 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 26 23:33:48.992879 2023] [security2:error] [pid 10125] [client 212.30.36.210:14953] [client 212.30.36.210] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.veneerdent.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.veneerdent.com"] [uri "/en/wp-json/wp/v2/users/"] [unique_id "ZWQcLFxQs98rKQR4hnLejQAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Ba-Yu
2023-09-23 06:05:22
(1 year ago)
WordPress hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
MAGIC
2023-09-12 12:12:49
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Staging
2023-08-19 04:40:12
(1 year ago)
Automated report (2023-08-19T07:40:12+03:00). Caught probing for unsecured backup files.
Hacking
backslash
2023-08-08 06:18:10
(1 year ago)
honeypot
Bad Web Bot
Savvii
2023-08-01 20:33:27
(1 year ago)
10 attempts against mh-mag-customerspam-ban on ether
Web App Attack
Savvii
2023-08-01 16:42:21
(1 year ago)
20 attempts against mh-misbehave-ban on ether
Brute-Force
Bad Web Bot
Web App Attack
Savvii
2023-07-31 22:56:35
(1 year ago)
21 attempts against mh-misbehave-ban on ether
Brute-Force
Bad Web Bot
Web App Attack
Savvii
2023-07-31 19:58:25
(1 year ago)
10 attempts against mh-mag-customerspam-ban on ether
Web App Attack
Savvii
2023-07-31 16:34:45
(1 year ago)
20 attempts against mh-misbehave-ban on ether
Brute-Force
Bad Web Bot
Web App Attack
Thaliruth
2023-07-12 09:21:25
(1 year ago)
212.30.36.210 - - [12/Jul/2023:11:21:21 +0200] "HEAD /backup/latest.zip HTTP/1.1" 301 0 "-" "-"<br / ... show more 212.30.36.210 - - [12/Jul/2023:11:21:21 +0200] "HEAD /backup/latest.zip HTTP/1.1" 301 0 "-" "-"
... show less
Hacking
Web App Attack