๐บ๐ธ
TPI-Abuse
2025-07-30 21:45:36
(11 months ago)
(mod_security) mod_security (id:225170) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:225170) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 30 17:45:29.484860 2025] [security2:error] [pid 7928:tid 7928] [client 2607:fe90:5::20:25638] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||kengarysp.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kengarysp.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aIqSefyBWWwtbxYYY1MfugAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2025-07-19 15:30:19
(11 months ago)
Repeated 403 errors, blocked by Fail2ban in custom-403 jail
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-07-16 07:35:54
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 16 03:35:49.326402 2025] [security2:error] [pid 20699:tid 20699] [client 2607:fe90:5::20:20101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "terrorismbooks.info"] [uri "/wp-config.php1"] [unique_id "aHdWVd46em9F0TRRch_23QAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-05 00:48:19
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 04 20:48:14.544100 2025] [security2:error] [pid 10640:tid 10640] [client 2607:fe90:5::20:3989] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brexitop.com"] [uri "/wp-config.php.bak"] [unique_id "aGh2TrBMr-ltRRtYKD--9QAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Bread
2025-06-29 19:35:00
(1 year ago)
WAF VIOLATION
Bad Web Bot
Exploited Host
Web App Attack
๐ฉ๐ช
LRob
2025-05-23 05:45:11
(1 year ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2025-05-23 05:30:08
(1 year ago)
Repeated attacks detected by Fail2Ban in recidive jail
Hacking
๐บ๐ธ
TPI-Abuse
2025-05-12 11:51:22
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 12 07:51:14.958973 2025] [security2:error] [pid 2755437:tid 2755437] [client 2607:fe90:5::20:21612] [client 2607:fe90:5::20] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oldworldfineantiques.com"] [uri "/wp-config.php.backup"] [unique_id "aCHgstjgU55kq6NL7XZFowAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-10 19:07:16
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 10 15:07:11.898188 2025] [security2:error] [pid 1815423:tid 1815423] [client 2607:fe90:5::20:31803] [client 2607:fe90:5::20] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lunginjurylaw.com"] [uri "/wp-config.php~"] [unique_id "aB-j32Y0YR0VFd8Gz6K1yQAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2025-05-10 18:45:04
(1 year ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-10 08:10:46
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 10 04:10:40.293682 2025] [security2:error] [pid 3903720:tid 3903720] [client 2607:fe90:5::20:61459] [client 2607:fe90:5::20] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "modistat.com"] [uri "/wp-config.php.bak"] [unique_id "aB8KABrAO0mu94N6VjWTTAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-05 17:18:14
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 05 13:18:08.168180 2025] [security2:error] [pid 3691355:tid 3691478] [client 2607:fe90:5::20:41020] [client 2607:fe90:5::20] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hylakaplan.com"] [uri "/wp-config.php-bak"] [unique_id "aBjy0KdtYXi2u-9RZvS52AAAAco"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-01 05:24:41
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 01 01:24:36.373720 2025] [security2:error] [pid 83082:tid 83082] [client 2607:fe90:5::20:19566] [client 2607:fe90:5::20] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "miles2go.net"] [uri "/wp-config.php.org"] [unique_id "aBMFlMdXALaeD-kN7fyFKAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-04-29 09:22:42
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 29 05:22:37.282361 2025] [security2:error] [pid 4004550:tid 4004550] [client 2607:fe90:5::20:15428] [client 2607:fe90:5::20] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jsolanogranite.com"] [uri "/wp-config.phpold"] [unique_id "aBCaXSzpUXxnegTK2u5NOQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-04-27 04:47:38
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2607:fe90:5::20 (tev-cl10.omnis.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 27 00:47:31.570615 2025] [security2:error] [pid 2037:tid 2037] [client 2607:fe90:5::20:6900] [client 2607:fe90:5::20] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "talamancanaturereserve.com"] [uri "/wp-config.php.orig"] [unique_id "aA2249FtzuRK5OLsDasDagAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack