๐บ๐ธ
TPI-Abuse
2025-10-29 09:22:15
(8 months ago)
(mod_security) mod_security (id:225170) triggered by 82.76.132.209 (82-76-132-209.rdsnet.ro): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 82.76.132.209 (82-76-132-209.rdsnet.ro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 29 05:22:11.227166 2025] [security2:error] [pid 19279:tid 19279] [client 82.76.132.209:48132] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||insidepublications.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "insidepublications.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aQHcw77geBevoSppkQFMnQAAAAg"], referer: https://insidepublications.com/wp-json/wp/v2/users/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-20 14:39:39
(9 months ago)
(mod_security) mod_security (id:225170) triggered by 82.76.132.209 (82-76-132-209.rdsnet.ro): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 82.76.132.209 (82-76-132-209.rdsnet.ro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 20 10:39:33.069837 2025] [security2:error] [pid 14469:tid 14469] [client 82.76.132.209:55983] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jolankagroup.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aM68pQ6VVvU5Jm_7sjl6hwAAAAU"], referer: https://jolankagroup.com/wp-json/wp/v2/users/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-08-13 17:59:52
(10 months ago)
(mod_security) mod_security (id:225170) triggered by 82.76.132.209 (82-76-132-209.rdsnet.ro): 1 in t ...
show more
(mod_security) mod_security (id:225170) triggered by 82.76.132.209 (82-76-132-209.rdsnet.ro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 13 13:59:44.426118 2025] [security2:error] [pid 26258:tid 26258] [client 82.76.132.209:37402] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||dvdmasters.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dvdmasters.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aJzSkH5HPtz6pRfKFEPQwAAAAA0"], referer: https://dvdmasters.com/wp-json/wp/v2/users/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nationaleventpros.com
2025-08-13 10:18:11
(10 months ago)
WordPress login attempt
Brute-Force
Anonymous
2025-03-16 01:30:06
(1 year ago)
BruteForce IMAP/POP3
Brute-Force
Anonymous
2025-01-17 08:50:28
(1 year ago)
Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK
Brute-Force
SSH
๐ฎ๐ฉ
Burayot
2024-12-07 11:32:39
(1 year ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 82.76.132.209 (RO/Romania/82-76-132 ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 82.76.132.209 (RO/Romania/82-76-132-209.rdsnet.ro): 1 in the last 3600 secs
show less
Web App Attack
๐ฉ๐ช
FeG Deutschland
2024-10-31 20:02:04
(1 year ago)
Mail: - login with unknown user - bruteforce
Brute-Force
๐น๐ท
rtbh.com.tr
2024-09-20 20:54:28
(1 year ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
๐น๐ท
rtbh.com.tr
2024-09-19 20:54:29
(1 year ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
Anonymous
2024-09-16 19:48:59
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ฉ๐ช
dwmp
2024-09-05 08:58:23
(1 year ago)
Sep 5 10:58:21 plesk postfix/smtpd[3489670]: lost connection after CONNECT from unknown[82.76.132.2 ...
show more
Sep 5 10:58:21 plesk postfix/smtpd[3489670]: lost connection after CONNECT from unknown[82.76.132.209]
Sep 5 10:58:22 plesk postfix/smtpd[3489813]: lost connection after CONNECT from unknown[82.76.132.209]
Sep 5 10:58:23 plesk postfix/smtpd[3489813]: lost connection after CONNECT from unknown[82.76.132.209]
...
show less
Brute-Force
SSH
๐ซ๐ท
Nicolmn
2024-09-03 09:06:35
(1 year ago)
Web form spam ( id jrdryl.l )
Web Spam
๐ฉ๐ช
paratodos.pro
2024-09-02 08:34:33
(1 year ago)
Form spam
Email Spam
๐ฒ๐พ
syokadmin
2024-09-01 22:25:30
(1 year ago)
82.76.132.209 (RO/Romania/82-76-132-209.rdsnet.ro), 2 distributed smtpauth attacks on account [junio ...
show more
82.76.132.209 (RO/Romania/82-76-132-209.rdsnet.ro), 2 distributed smtpauth attacks on account [[email protected] ] in the last 3600 secs
show less
Brute-Force