๐ซ๐ท
masterguru
2026-06-16 05:50:24
(2 weeks ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 91.132.125.92 (US/United States/-): 1 in the l ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 91.132.125.92 (US/United States/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-14 06:42:06
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 91.132.125.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 91.132.125.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 02:42:02.506382 2026] [security2:error] [pid 6235:tid 6250] [client 91.132.125.92:49613] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||viasatsales.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "viasatsales.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai5NOrcBA2n85NOox9ZmeAAAAUI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-10 09:35:48
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 91.132.125.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 91.132.125.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 05:35:43.728266 2026] [security2:error] [pid 6762:tid 6762] [client 91.132.125.92:38669] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||charityroast.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "charityroast.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aikv72xCjQlOKmJlWCMXZQAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-21 19:01:20
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 91.132.125.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 91.132.125.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 15:01:16.789202 2026] [security2:error] [pid 18940:tid 18940] [client 91.132.125.92:48339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boaredraven.com"] [uri "/wp-config.php.orig"] [unique_id "ag9WfNp651GNy2QHLZfmvgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-05-21 07:06:20
(1 month ago)
Scanning/Probing (24)
Brute-Force
Web App Attack
๐ช๐ธ
masterguru
2026-05-17 02:38:46
(1 month ago)
Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (44020-123)
Hacking
Anonymous
2026-02-18 03:09:46
(4 months ago)
GlobalProtect Password Spraying
Brute-Force
๐บ๐ธ
fbarela
2026-02-01 00:00:20
(5 months ago)
FortiGate SSL VPN login failures.
Hacking
Brute-Force
๐ฑ๐ป
garmtech.com
2025-12-27 15:01:19
(6 months ago)
IM360 WAF: Attempt to upload malware
Hacking
Anonymous
2025-12-09 02:42:13
(6 months ago)
Attempted brute force login to web vpn 2 time(s); last attempt for 2025.12.09 is noted in report tim ...
show more
Attempted brute force login to web vpn 2 time(s); last attempt for 2025.12.09 is noted in report timestamp
show less
Hacking
Brute-Force
Anonymous
2025-10-13 23:07:39
(8 months ago)
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.13 is noted in report tim ...
show more
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.13 is noted in report timestamp
show less
Hacking
Brute-Force