Anonymous
2026-06-30 19:41:05
(4 days ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐ฎ๐น
VHosting
2025-12-23 20:15:25
(6 months ago)
Detected attack and reported by a human
DDoS Attack
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
SSH
๐บ๐ธ
TPI-Abuse
2025-06-06 19:32:54
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodac ...
show more
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodacom.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 06 15:32:48.663481 2025] [security2:error] [pid 207092:tid 207092] [client 41.13.212.115:41799] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||otraes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "otraes.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aENCYF8s-RlNczRCCJr57gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-06 12:55:32
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodac ...
show more
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodacom.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 06 08:55:28.857462 2025] [security2:error] [pid 3990531:tid 3990531] [client 41.13.212.115:46292] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||keychainfilms.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "keychainfilms.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aELlQLpJJ-7OkjE4g_4E9QAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
zynex
2025-06-06 08:05:45
(1 year ago)
URL Probing: /xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-06 01:01:41
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodac ...
show more
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodacom.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 05 21:01:37.504040 2025] [security2:error] [pid 75190:tid 75190] [client 41.13.212.115:38474] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||iplayriichi.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "iplayriichi.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aEI98berVcNz1ZNtFfgDJgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-06-05 17:42:17
(1 year ago)
Malicious activity detected
Hacking
Web App Attack
Anonymous
2025-06-05 09:41:21
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐จ๐ญ
teamsecure
2025-06-05 06:02:51
(1 year ago)
Banned for trying to access xmlrpc
Web App Attack
๐ฎ๐ฉ
Burayot
2025-06-05 05:06:50
(1 year ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 41.13.212.115 (ZA/South Africa/vc-g ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 41.13.212.115 (ZA/South Africa/vc-gp-n-41-13-212-115.umts.vodacom.co.za): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-04 12:51:13
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodac ...
show more
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodacom.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 04 08:51:08.260102 2025] [security2:error] [pid 1248198:tid 1248198] [client 41.13.212.115:52795] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||kengarysp.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kengarysp.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aEBBPJdHuGNUj3Ajn8xNNwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-04 11:57:43
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodac ...
show more
(mod_security) mod_security (id:225170) triggered by 41.13.212.115 (vc-gp-n-41-13-212-115.umts.vodacom.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 04 07:57:38.414009 2025] [security2:error] [pid 2337634:tid 2337634] [client 41.13.212.115:35084] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bwrtorchlake.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bwrtorchlake.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aEA0siIO1yaHGDcv8oEFDAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-06-04 08:42:48
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ฟ๐ฆ
IrisFlower
2022-10-11 07:11:32
(3 years ago)
Unauthorized connection attempt detected from IP address 41.13.212.115 to port 8080 [J]
Port Scan
Hacking