Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
Brute-Force
SSH
SSH
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 05 20:50:17.443848 2024] [security2:error] [pid 18151] [client 45.148.235.167:24237] [client 45.148.235.167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||tntserv.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tntserv.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZmEHyeAqldD8w_nJAeGMZgAAAAI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 03 16:50:49.337231 2024] [security2:error] [pid 21503] [client 45.148.235.167:53537] [client 45.148.235.167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||inverzona.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "inverzona.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zl4sqcFsNLHQSRerkm__5AAAAAI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 03 04:17:52.484999 2024] [security2:error] [pid 502] [client 45.148.235.167:42081] [client 45.148.235.167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ftiptondds.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ftiptondds.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zl18MFJJsQXCk2925EUZgAAAAAs"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 02 05:50:20.312492 2024] [security2:error] [pid 472996] [client 45.148.235.167:57015] [client 45.148.235.167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||drgracetomastolentino.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drgracetomastolentino.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZlxAXItcgK1oEgI2MaDgKQAAAAo"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 01 06:31:35.581606 2024] [security2:error] [pid 7598] [client 45.148.235.167:64751] [client 45.148.235.167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||charlescastleman.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "charlescastleman.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zlr4hx2zcgP_0RHluYzuwQAAAAk"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:225170) triggered by 45.148.235.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 01 05:17:01.825227 2024] [security2:error] [pid 20706] [client 45.148.235.167:53155] [client 45.148.235.167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||centrodentalsindolor.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "centrodentalsindolor.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZlrnDQD2psyjPKl-E8x8yAAAAAE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
10dencehispahard SL
|
|
Unauthorized login attempts [ wordpress-xmlrpc]
|
Brute-Force
Web App Attack
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|
backslash
|
|
|
Brute-Force
|
|
nextoo.de
|
|
Chat Spam
|
Web Spam
|
|