|
๐ณ๐ฟ
Antinson
|
|
Scraping with a high error ratio and request rate
|
Bad Web Bot
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 8.234.137.201 (201.137.234.8.bc.googleuserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 8.234.137.201 (201.137.234.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:13:08.879856 2026] [security2:error] [pid 4405:tid 4405] [client 8.234.137.201:54926] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||newmooncafe.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "newmooncafe.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akY5tE9pN9mvtf0TUigUtAAAAAQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ณ๐ฑ
Site.eu
|
|
Repeated wp-login/xmlrpc attempts
|
Brute-Force
SSH
|
|
|
๐ซ๐ท
Baking333
|
|
[redacted] 8.234.137.201 - - [02/Jul/2026:11:00:26 +0100] "GET //wp-includes/ID3/[redacted] HTTP/1.1 ...
show more
[redacted] 8.234.137.201 - - [02/Jul/2026:11:00:26 +0100] "GET //wp-includes/ID3/[redacted] HTTP/1.1" 302 1528 0/52375 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" [redacted] 8.234.137.201 - - [02/Jul/2026:11:00:26 +0100] "GET /[redacted]?rsd HTTP/1.1" 302 1527 0/66724 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
|
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 8.234.137.201 (201.137.234.8.bc.googleuserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 8.234.137.201 (201.137.234.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:58:09.567979 2026] [security2:error] [pid 10420:tid 10420] [client 8.234.137.201:56721] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.yogawithbubba.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.yogawithbubba.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akY2MZEF9foYXVVx17C1twAAAAU"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ต๐ฑ
strefapi_com
|
|
Brute-force, web
...
|
Hacking
Brute-Force
Web App Attack
|
|
|
๐ฆ๐บ
2000cn.com.au
|
|
This IP was detected by CrowdSec triggering crowdsecurity/http-probing
|
Web App Attack
Hacking
|
|
|
๐จ๐ญ
blinx
|
|
Suspicious activity detected by Modsecurity
|
Web Spam
Port Scan
Hacking
Bad Web Bot
Web App Attack
|
|
|
Anonymous
|
|
Blocked by ModSec and CSF
|
Port Scan
|
|
|
๐จ๐ฆ
Dolphi
|
|
POST //xmlrpc.php
|
Brute-Force
Web App Attack
|
|
|
Anonymous
|
|
8.234.137.201 - - [02/Jul/2026:11:37:25 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 437 " ...
show more
8.234.137.201 - - [02/Jul/2026:11:37:25 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
8.234.137.201 - - [02/Jul/2026:11:37:25 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 288 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
8.234.137.201 - - [02/Jul/2026:11:37:25 +0200] "GET /feed/ HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
8.234.137.201 - - [02/Jul/2026:11:37:25 +0200] "GET /feed/ HTTP/1.1" 404 288 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
8.234.137.201 - - [02/Jul/2026:11:37:25 +0200] "GET /xmlrpc.php?rsd HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like
...
show less
|
Bad Web Bot
Web App Attack
|
|
|
๐ซ๐ท
masterguru
|
|
WordPress: User enumeration. Pattern match "(author\\\\= (88030-201)
|
Hacking
|
|
|
๐ฎ๐น
VHosting
|
|
Detected WordPress attack from 4 different servers
|
Brute-Force
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 8.234.137.201 (201.137.234.8.bc.googleuserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 8.234.137.201 (201.137.234.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:28:08.945274 2026] [security2:error] [pid 16055:tid 16055] [client 8.234.137.201:63962] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.lasertherapyoc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.lasertherapyoc.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akYvKGwe1kEdu5zbxhckRwAAAAg"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|