TPI-Abuse
2025-01-17 12:53:13
(59 minutes ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 17 07:53:05.496634 2025] [security2:error] [pid 6075:tid 6075] [client 2607:f298:5:118a::983:dd0a:60372] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cycon.kleens-uk.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cycon.kleens-uk.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4pSsXlebXGrl85Yy7lgsgAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-17 11:39:27
(2 hours ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 17 06:39:24.074820 2025] [security2:error] [pid 1248:tid 1248] [client 2607:f298:5:118a::983:dd0a:60452] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||tracytappan.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tracytappan.net"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4pBbD3pe9-t-ebrLgu3BAAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
spyra.rocks
2025-01-17 11:37:06
(2 hours ago)
WordPress
Web App Attack
Anonymous
2025-01-16 13:47:34
(1 day ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
TPI-Abuse
2025-01-16 13:42:00
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 16 08:41:54.158092 2025] [security2:error] [pid 1003:tid 1003] [client 2607:f298:5:118a::983:dd0a:45002] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||protection4allsecurity.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "protection4allsecurity.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4kMoggG5f3Z5CXlwKlrewAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
catalink.com
2025-01-16 13:28:13
(1 day ago)
Brute forcing Wordpress login
Exploited Host
Web App Attack
TPI-Abuse
2025-01-16 13:14:16
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 16 08:14:12.419018 2025] [security2:error] [pid 10293:tid 10293] [client 2607:f298:5:118a::983:dd0a:60778] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ontimelogistiks.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ontimelogistiks.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4kGJDl2W-hJPRBOXrGDlgAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-16 11:57:34
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 16 06:57:29.151510 2025] [security2:error] [pid 21034:tid 21034] [client 2607:f298:5:118a::983:dd0a:43670] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||applemaccomputerconsulting.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "applemaccomputerconsulting.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4j0KRRphDMFz8NuWQMjagAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-16 11:38:03
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 16 06:37:57.488878 2025] [security2:error] [pid 2329:tid 2329] [client 2607:f298:5:118a::983:dd0a:38608] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||coolerboxes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "coolerboxes.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4jvlZXyg3Tc_4xIQyHxIQAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-16 11:05:51
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 16 06:05:48.329460 2025] [security2:error] [pid 26842:tid 26842] [client 2607:f298:5:118a::983:dd0a:59054] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||owldreamllc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "owldreamllc.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4joDBNPH801CvlpdsVyfQAAADg"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-16 10:31:38
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 16 05:31:31.179690 2025] [security2:error] [pid 14972:tid 14972] [client 2607:f298:5:118a::983:dd0a:45294] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||fatcaverecords.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fatcaverecords.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4jgA67fSQUgWBjF0V4w1QAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-16 10:11:51
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 16 05:11:44.199660 2025] [security2:error] [pid 12674:tid 12674] [client 2607:f298:5:118a::983:dd0a:56284] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||comobarbershop.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "comobarbershop.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4jbYBjPF7qZBB1Ja0YDFwAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-16 07:44:02
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): ... show more (mod_security) mod_security (id:225170) triggered by 2607:f298:5:118a::983:dd0a (stevethedog.click): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 16 02:43:55.208190 2025] [security2:error] [pid 30047:tid 30047] [client 2607:f298:5:118a::983:dd0a:50218] [client 2607:f298:5:118a::983:dd0a] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||computerservicesofflorida.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "computerservicesofflorida.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z4i4u5YaaM-nqe_Tk-8mdAAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
oisd.nl
2025-01-16 07:28:02
(1 day ago)
File not found while referer equals request
Web App Attack
Ba-Yu
2025-01-05 19:00:56
(1 week ago)
WP-xmlrpc exploit
Web Spam
Blog Spam
Hacking
Exploited Host
Web App Attack