Anonymous
2024-08-25 00:31:25
(2 weeks ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
MAGIC
2024-08-14 16:07:04
(3 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
nationaleventpros.com
2024-08-12 03:54:35
(4 weeks ago)
WordPress login attempt
Brute-Force
winscoreonline.com
2024-08-12 03:00:11
(4 weeks ago)
Port Scan
Hippoline
2024-07-23 02:03:13
(1 month ago)
Jul 23 04:00:02 local wp(XXXX-A)[10582]: Authentication attempt for unknown user blog from 58.140.22 ... show more Jul 23 04:00:02 local wp(XXXX-A)[10582]: Authentication attempt for unknown user blog from 58.140.22.90
... show less
Brute-Force
Web App Attack
WebWizards.NZ
2024-06-01 17:56:14
(3 months ago)
Trolling for resource vulnerabilities
Web App Attack
MAGIC
2024-05-12 16:09:56
(3 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
TPI-Abuse
2024-05-10 17:07:58
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 58.140.22.90 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 58.140.22.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 10 13:07:55.047126 2024] [security2:error] [pid 5577] [client 58.140.22.90:56441] [client 58.140.22.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.quickasawink.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.quickasawink.org"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Zj5Ua7DyygPlSzplTzCM4gAAABI"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-05-07 17:07:07
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 58.140.22.90 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 58.140.22.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 07 13:06:58.691195 2024] [security2:error] [pid 24160] [client 58.140.22.90:57723] [client 58.140.22.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.aaattanasio.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.aaattanasio.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ZjpfsslFdMVXWN213YS9KwAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
MAGIC
2024-05-05 07:07:17
(4 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
TPI-Abuse
2024-04-28 17:42:35
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 58.140.22.90 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 58.140.22.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 28 13:42:28.109525 2024] [security2:error] [pid 17133:tid 47401094129408] [client 58.140.22.90:50390] [client 58.140.22.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.quantumgaze.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.quantumgaze.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Zi6KhKKnrR3Uwn0NCQadogAAAVg"] show less
Brute-Force
Bad Web Bot
Web App Attack
WebWizards.NZ
2024-04-25 17:06:29
(4 months ago)
Trolling for resource vulnerabilities
Web App Attack
MAGIC
2024-04-19 05:00:56
(4 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
10dencehispahard SL
2024-04-18 12:00:19
(4 months ago)
Unauthorized login attempts [ wordpress-xmlrpc, wordpress]
Brute-Force
Web App Attack
WebWizards.NZ
2024-04-16 09:19:50
(4 months ago)
Trolling for resource vulnerabilities
Web App Attack