๐บ๐ธ
TPI-Abuse
2024-07-05 20:40:26
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 05 16:40:21.798147 2024] [security2:error] [pid 1080] [client 89.107.188.89:60826] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.soberbrains.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.soberbrains.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZohaNfDiX9wLtmvqBpsx9gAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-05 19:24:25
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 05 15:24:21.225572 2024] [security2:error] [pid 31317] [client 89.107.188.89:52426] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||iconbizpromo.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "iconbizpromo.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZohIZXrWwGL0niDXWmU6KQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-04 16:29:41
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 12:29:36.297903 2024] [security2:error] [pid 23395] [client 89.107.188.89:49308] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ardath.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ardath.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ZobN8D6_wQikjvTl1ChOfgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-04 16:14:02
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 12:13:55.911053 2024] [security2:error] [pid 3789] [client 89.107.188.89:50666] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||greatchristianadventure.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "greatchristianadventure.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZobKQ4AUh83vRosMX7RwPwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-04 15:36:11
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 11:36:07.356675 2024] [security2:error] [pid 26398] [client 89.107.188.89:55328] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gaeltv.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gaeltv.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZobBZwvgrwdH9_aRfU9h4wAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-04 15:14:56
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 11:14:49.907386 2024] [security2:error] [pid 25156:tid 47623616616192] [client 89.107.188.89:47950] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||willmanlawfirm.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "willmanlawfirm.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zoa8aQFaUQkmw1cJpxEiJAAAAUY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-04 14:07:10
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 10:07:05.228659 2024] [security2:error] [pid 17204] [client 89.107.188.89:48232] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.ashleycroft.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.ashleycroft.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZoasiWjYm0C-QUYA3ZM1qwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-04 13:23:56
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 09:23:51.857041 2024] [security2:error] [pid 15880:tid 47826759350016] [client 89.107.188.89:44908] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.ceol.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.ceol.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZoaiZwiZGgcj0HcjwySBogAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-04 12:32:27
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 89.107.188.89 (28767.whserv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 08:32:24.033862 2024] [security2:error] [pid 25627] [client 89.107.188.89:38160] [client 89.107.188.89] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.bulbnoram.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bulbnoram.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZoaWWMkK3Fneq9985Ob42gAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nationaleventpros.com
2024-07-03 20:43:40
(2 years ago)
WordPress login attempt
Brute-Force
Anonymous
2024-07-03 05:58:37
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ฉ๐ช
eminovic.ba
2024-07-02 15:41:50
(2 years ago)
Wordpress attack
...
Hacking
Brute-Force
Web App Attack
Anonymous
2024-07-02 02:22:38
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
nationaleventpros.com
2024-07-01 11:00:59
(2 years ago)
WordPress login attempt
Brute-Force
๐ฌ๐ง
Swiptly
2024-06-30 23:17:31
(2 years ago)
WordPress xmlrpc spam or enumeration
...
Web Spam
Bad Web Bot
Web App Attack