[ { "entry_type": "None", "event_time": "0000-00-00 00:00:00.0-07", "attacker_ip": "0.0.0.0", "event_emails": [ "sales@webiron.com" ], "event_msg": "List provided by Webiron.com", "emails_deliverable": "Yes", "incidents_reported": 0 }, { "entry_type": "report", "event_time": "2017-10-07 21:31:23.588842-07", "attacker_ip": "187.5.6.136", "event_emails": [ "abuse@brasiltelecom.net.br", "abuse@oi.net.br", "mail-abuse@cert.br" ], "event_msg": "Host banned due to SQL injection attempts", "emails_deliverable": "Yes", "incidents_reported": 5, "days_unresolved": "64<\/font>" }, { "entry_type": "report", "event_time": "2017-10-07 20:31:16.845592-07", "attacker_ip": "187.5.6.136", "event_emails": [ "abuse@brasiltelecom.net.br", "abuse@oi.net.br", "mail-abuse@cert.br", "abuse@jpalbuns.com.br" ], "event_msg": "Host banned due to SQL injection attempts", "emails_deliverable": "Yes", "incidents_reported": 1, "days_unresolved": "64<\/font>" }, { "entry_type": "report", "event_time": "2017-09-26 01:13:08.727962-07", "attacker_ip": "189.59.5.91", "event_emails": [ "abuse@gvt.net.br", "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Script Scanner,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 2, "days_unresolved": "92<\/font>" }, { "entry_type": "report", "event_time": "2017-09-24 11:36:56.559832-07", "attacker_ip": "186.215.143.187", "event_emails": [ "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 1, "days_unresolved": "<3<\/font>" }, { "entry_type": "report", "event_time": "2017-09-24 06:38:19.0308-07", "attacker_ip": "186.215.197.183", "event_emails": [ "abuse@gvt.net.br", "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Script Scanner,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 2, "days_unresolved": "10<\/font>" }, { "entry_type": "report", "event_time": "2017-09-24 05:38:16.789901-07", "attacker_ip": "186.215.197.183", "event_emails": [ "abuse@gvt.net.br", "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Script Scanner,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 2, "days_unresolved": "10<\/font>" }, { "entry_type": "report", "event_time": "2017-09-24 05:30:36.256496-07", "attacker_ip": "177.19.165.26", "event_emails": [ "abuse@gvt.net.br", "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 1, "days_unresolved": "39<\/font>" }, { "entry_type": "report", "event_time": "2017-09-22 03:56:09.540667-07", "attacker_ip": "179.184.85.111", "event_emails": [ "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 1, "days_unresolved": "45<\/font>" }, { "entry_type": "report", "event_time": "2017-09-21 21:32:05.435822-07", "attacker_ip": "177.19.165.26", "event_emails": [ "abuse@gvt.net.br", "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Script Scanner,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 2, "days_unresolved": "39<\/font>" }, { "entry_type": "report", "event_time": "2017-09-14 10:30:49.383394-07", "attacker_ip": "186.215.197.183", "event_emails": [ "abuse@gvt.net.br", "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Script Scanner,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 2, "days_unresolved": "10<\/font>" }, { "entry_type": "report", "event_time": "2017-09-14 00:38:13.282186-07", "attacker_ip": "179.184.85.111", "event_emails": [ "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Script Scanner", "emails_deliverable": "Yes", "incidents_reported": 1, "days_unresolved": "45<\/font>" }, { "entry_type": "report", "event_time": "2017-09-13 03:59:17.927267-07", "attacker_ip": "177.19.185.235", "event_emails": [ "abuse@gvt.net.br", "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress Login Script Scanner,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 2, "days_unresolved": "111<\/font>" }, { "entry_type": "report", "event_time": "2017-09-03 09:24:34.672127-07", "attacker_ip": "204.16.0.243", "event_emails": [ "abuse@ugt.org.br", "fabio@braslink.com", "regmaster@braslink.com", "abuse@braslink.com", "mail-abuse@cert.br" ], "event_msg": "Host banned for sending commands meant to run commands via the local shell. This is often found with bots sending raw PHP commands to malware.", "emails_deliverable": "Yes", "incidents_reported": 1, "days_unresolved": "56<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 22:19:13.449619-07", "attacker_ip": "189.4.72.84", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress Login Brute Force,
WordPress XMLRPC Dataminer", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "28<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 21:57:31.833076-07", "attacker_ip": "187.110.227.206", "event_emails": [ "abuse@baydenet.com.br", "abuse@cert.br", "mail-abuse@cert.br", "registro.br@baydenet.com.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "37<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 21:02:27.682549-07", "attacker_ip": "179.219.144.78", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "13<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 19:55:14.45211-07", "attacker_ip": "138.36.35.1", "event_emails": [ "marcio.miguel@copel.com", "security@apnic.net", "abuse@copel.com", "mail-abuse@cert.br", "abuse@copel.net" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "18<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 18:16:06.215389-07", "attacker_ip": "189.47.195.91", "event_emails": [ "abuse@telesp.net.br", "mail-abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "21<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 18:11:43.12403-07", "attacker_ip": "179.158.233.3", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress Login Brute Force,
WordPress Login Script Scanner", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "37<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 18:02:26.905812-07", "attacker_ip": "179.235.250.72", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer", "emails_deliverable": "Yes", "incidents_reported": 1, "days_unresolved": "41<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 16:51:13.611247-07", "attacker_ip": "189.5.231.106", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "<3<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 16:28:21.696409-07", "attacker_ip": "177.33.55.65", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "24<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 16:12:58.110121-07", "attacker_ip": "191.191.1.157", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "abuse@cert.br" ], "event_msg": "WordPress Login Brute Force,
WordPress Login Script Scanner", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "6<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 12:26:11.48811-07", "attacker_ip": "179.218.90.185", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "11<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 12:06:42.594983-07", "attacker_ip": "179.155.121.73", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "3<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 11:16:46.335855-07", "attacker_ip": "191.188.23.116", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "4<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 10:53:00.634239-07", "attacker_ip": "189.7.142.210", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "23<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 09:37:51.273285-07", "attacker_ip": "177.180.145.50", "event_emails": [ "abuse@vivax.com.br", "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "16<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 09:35:10.795468-07", "attacker_ip": "189.73.196.90", "event_emails": [ "abuse@brasiltelecom.net.br", "abuse@oi.net.br", "mail-abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "20<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 09:03:25.960054-07", "attacker_ip": "200.241.33.226", "event_emails": [ "abuse@abaco.com.br", "mail-abuse@cert.br", "abuse@cert.br" ], "event_msg": "WordPress Login Script Scanner,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "71<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 08:58:54.962524-07", "attacker_ip": "179.184.177.139", "event_emails": [ "abuse@gvt.net.br", "abuse@gvt.com.br", "mail-abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "20<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 08:19:43.893083-07", "attacker_ip": "179.216.46.228", "event_emails": [ "abuse@vivax.com.br", "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "28<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 07:44:54.120057-07", "attacker_ip": "187.66.42.131", "event_emails": [ "abuse@vivax.com.br", "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "<3<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 06:48:06.69424-07", "attacker_ip": "187.95.127.79", "event_emails": [ "marcio.miguel@copel.com", "abuse@cert.br", "abuse@copel.com", "mail-abuse@cert.br", "abuse@copel.net" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "30<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 06:28:14.28016-07", "attacker_ip": "179.222.37.171", "event_emails": [ "abuse@vivax.com.br", "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 6, "days_unresolved": "7<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 03:46:14.183239-07", "attacker_ip": "179.215.57.187", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "9<\/font>" }, { "entry_type": "report", "event_time": "2017-08-25 01:44:02.234799-07", "attacker_ip": "201.6.135.125", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "<3<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 22:19:43.703311-07", "attacker_ip": "187.255.114.54", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress Login Brute Force,
WordPress Login Script Scanner", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "<3<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 20:42:41.839873-07", "attacker_ip": "187.105.181.175", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "53<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 18:52:22.020258-07", "attacker_ip": "186.207.137.74", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress Login Script Scanner,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "34<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 17:06:02.187445-07", "attacker_ip": "191.179.144.120", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "66<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 16:32:09.934879-07", "attacker_ip": "191.177.186.170", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress Login Brute Force,
WordPress Login Script Scanner", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "<3<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 14:27:16.524645-07", "attacker_ip": "187.8.200.66", "event_emails": [ "adminternet@sp.gov.br", "abuse@sp.gov.br", "mail-abuse@cert.br", "csirt@sp.gov.br" ], "event_msg": "WordPress Login Brute Force,
WordPress Login Script Scanner", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "22<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 13:42:43.735921-07", "attacker_ip": "201.0.164.186", "event_emails": [ "abuse@telesp.net.br", "mail-abuse@cert.br", "abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "43<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 11:04:36.328437-07", "attacker_ip": "177.95.203.117", "event_emails": [ "abuse@telesp.net.br", "mail-abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "7<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 09:05:24.245198-07", "attacker_ip": "189.63.38.179", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "16<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 08:43:52.265344-07", "attacker_ip": "187.22.85.106", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "6<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 08:15:12.155959-07", "attacker_ip": "177.34.69.223", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 4, "days_unresolved": "5<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 07:51:10.973567-07", "attacker_ip": "187.122.125.130", "event_emails": [ "abuse@netservicos.com.br", "abuse@virtua.com.br", "mail-abuse@cert.br", "gsv@numeracao.registro.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "16<\/font>" }, { "entry_type": "report", "event_time": "2017-08-24 07:08:07.635355-07", "attacker_ip": "200.217.6.178", "event_emails": [ "abuse@telemar.net.br", "mail-abuse@cert.br" ], "event_msg": "WordPress XMLRPC Dataminer,
WordPress Login Brute Force", "emails_deliverable": "Yes", "incidents_reported": 3, "days_unresolved": "7<\/font>" } ]