๐ฌ๐ง
Swiptly
2024-12-08 14:36:12
(1 year ago)
WordPress xmlrpc spam or enumeration
...
Web Spam
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-06 12:08:12
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 2a01:4f9:4b:4f69::2 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:225170) triggered by 2a01:4f9:4b:4f69::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 06 07:08:05.035951 2024] [security2:error] [pid 17569:tid 17583] [client 2a01:4f9:4b:4f69::2:36568] [client 2a01:4f9:4b:4f69::2] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||nabsci.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nabsci.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z1LpJVG9U4WuXwnURfmeEQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-06 04:09:08
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 2a01:4f9:4b:4f69::2 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:225170) triggered by 2a01:4f9:4b:4f69::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 23:09:03.627115 2024] [security2:error] [pid 3934:tid 3934] [client 2a01:4f9:4b:4f69::2:38054] [client 2a01:4f9:4b:4f69::2] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bestpracticemedicine.org.blosser.info|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bestpracticemedicine.org.blosser.info"] [uri "/wp-json/wp/v2/users"] [unique_id "Z1J438tFmN_a0IWjoRvtbwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-05 17:03:49
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 2a01:4f9:4b:4f69::2 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:225170) triggered by 2a01:4f9:4b:4f69::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 12:03:42.133201 2024] [security2:error] [pid 3853:tid 3853] [client 2a01:4f9:4b:4f69::2:35586] [client 2a01:4f9:4b:4f69::2] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mail.portsload.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.portsload.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z1Hc7tjksOeuN4peDfClPAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2024-12-04 08:41:36
(1 year ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ณ๐ฑ
ipoac.nl
2024-11-30 07:08:47
(1 year ago)
***:443 2a01:4f9:4b:4f69::2 - - [30/Nov/2024:08:08:46 +0100] *** "POST /xmlrpc.php HTTP/1.1" 403 411 ...
show more
***:443 2a01:4f9:4b:4f69::2 - - [30/Nov/2024:08:08:46 +0100] *** "POST /xmlrpc.php HTTP/1.1" 403 4119 "-" "Mozilla/5.0 (Linux; Android 10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36"
show less
Bad Web Bot
๐ฌ๐ง
Swiptly
2024-11-29 01:33:37
(1 year ago)
WordPress xmlrpc spam or enumeration
...
Web Spam
Bad Web Bot
Web App Attack
๐ฆ๐บ
weblite
2024-11-27 18:35:25
(1 year ago)
LONG_RUNNING WP_XMLRPC_ABUSE
Brute-Force
Web App Attack
๐ณ๐ฑ
ipoac.nl
2024-11-26 12:42:00
(1 year ago)
***:443 2a01:4f9:4b:4f69::2 - - [26/Nov/2024:13:41:59 +0100] *** "POST /xmlrpc.php HTTP/1.1" 403 412 ...
show more
***:443 2a01:4f9:4b:4f69::2 - - [26/Nov/2024:13:41:59 +0100] *** "POST /xmlrpc.php HTTP/1.1" 403 4120 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.104 Safari/537.36"
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2024-11-26 07:06:37
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 2a01:4f9:4b:4f69::2 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:225170) triggered by 2a01:4f9:4b:4f69::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 26 02:06:32.631766 2024] [security2:error] [pid 7822:tid 7912] [client 2a01:4f9:4b:4f69::2:48124] [client 2a01:4f9:4b:4f69::2] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||pruebas.emehache.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pruebas.emehache.net"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0VzePPUa2vtbn0VOWG6fAAAAVI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
jasperedv.de
2024-11-22 00:41:14
(1 year ago)
Apache Login - Brutforcing
Brute-Force
Web App Attack
๐ฆ๐บ
crispi
2024-11-21 23:42:12
(1 year ago)
Unauthorized connection attempt detected from IP address 2a01:4f9:4b:4f69::2 to TCP port 80
Port Scan
๐บ๐ธ
S.O.B.A. Dev.
2024-11-21 14:48:18
(1 year ago)
Threat Blocked by BeeHive from (ASN:24940) (Network:HETZNER-AS) (Host:soba.dev) (Method:GET) (Protoc ...
show more
Threat Blocked by BeeHive from (ASN:24940) (Network:HETZNER-AS) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2024-11-21T14:48:18Z)
show less
Web Spam
Brute-Force
Web App Attack
๐ฆ๐บ
weblite
2024-11-21 05:59:07
(1 year ago)
WP_XMLRPC_ABUSE
Brute-Force
Web App Attack
๐ณ๐ฑ
ipoac.nl
2024-11-12 11:11:36
(1 year ago)
***:443 2a01:4f9:4b:4f69::2 - - [12/Nov/2024:12:11:35 +0100] *** "POST /xmlrpc.php HTTP/1.1" 403 412 ...
show more
***:443 2a01:4f9:4b:4f69::2 - - [12/Nov/2024:12:11:35 +0100] *** "POST /xmlrpc.php HTTP/1.1" 403 4120 "-" "Mozilla/5.0 (Windows NT 5.1; rv:52.0) Gecko/20100101 Firefox/52.0"
show less
Bad Web Bot