botreporter
2024-10-05 06:47:29
(1 month ago)
CMS vulnerability/installation scanning
Brute-Force
Web App Attack
maxxsense
2024-10-05 06:43:12
(1 month ago)
(wordpress) Failed wordpress login from 34.132.176.52 (US/United States/52.176.132.34.bc.googleuserc ... show more (wordpress) Failed wordpress login from 34.132.176.52 (US/United States/52.176.132.34.bc.googleusercontent.com) show less
Brute-Force
TPI-Abuse
2024-10-05 06:42:40
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 34.132.176.52 (52.176.132.34.bc.googleuserconte ... show more (mod_security) mod_security (id:225170) triggered by 34.132.176.52 (52.176.132.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 05 02:42:36.214671 2024] [security2:error] [pid 15539:tid 15677] [client 34.132.176.52:56526] [client 34.132.176.52] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||iacsb.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "iacsb.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZwDf3MBFz4K1FTW-RARMeAAAAhc"] show less
Brute-Force
Bad Web Bot
Web App Attack
Hirte
2024-10-05 06:31:38
(1 month ago)
SS5: Web Attack GET /wp-includes/wlwmanifest.xml
Web Spam
Hacking
Bad Web Bot
Web App Attack
Anonymous
2024-10-05 06:31:21
(1 month ago)
Malicious activity detected
Hacking
Brute-Force
cmbplf
2024-10-05 06:21:27
(1 month ago)
9.040 requests to */xmlrpc.php
335 requests to */wp-includes/wlwmanifest.xml
Brute-Force
Bad Web Bot
TPI-Abuse
2024-10-05 06:19:58
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 34.132.176.52 (52.176.132.34.bc.googleuserconte ... show more (mod_security) mod_security (id:225170) triggered by 34.132.176.52 (52.176.132.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 05 02:19:54.404501 2024] [security2:error] [pid 26741:tid 26741] [client 34.132.176.52:52771] [client 34.132.176.52] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.magacine.tv|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.magacine.tv"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZwDaitgsmewiOJkwk23t3QAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
stinpriza
2024-10-05 06:19:09
(1 month ago)
WP Authentication attempt for unknown user
Brute-Force
Web App Attack
Cloudkul Cloudkul
2024-10-05 06:10:15
(1 month ago)
Multiple unauthorized attempts to access web resources
Brute-Force
Web App Attack
Dolphi
2024-10-05 06:10:03
(1 month ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
TPI-Abuse
2024-10-05 06:03:16
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 34.132.176.52 (52.176.132.34.bc.googleuserconte ... show more (mod_security) mod_security (id:225170) triggered by 34.132.176.52 (52.176.132.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 05 02:03:11.975438 2024] [security2:error] [pid 18546:tid 18603] [client 34.132.176.52:54261] [client 34.132.176.52] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||trulyoriginalpurpleoctopus.art|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "trulyoriginalpurpleoctopus.art"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZwDWn3aJmdIHN6lxnX08jgAAAYA"] show less
Brute-Force
Bad Web Bot
Web App Attack
jcbriar
2024-10-05 06:03:15
(1 month ago)
Searching for vulnerable scripts
Hacking
Web App Attack
Kenshin869
2024-10-05 06:02:13
(1 month ago)
Wordpress unauthorized access attempt
Brute-Force