Anonymous
2024-12-02 20:18:15
(8 minutes ago)
apache-wordpress-login
Brute-Force
Web App Attack
spam.must.die
2024-12-02 17:23:13
(3 hours ago)
IP triggered category <category>
Hacking
Web App Attack
Mr-Money
2024-12-02 16:06:18
(4 hours ago)
2/Nov/2024:06:51:01 +0100128.199.168.43 - - [02/Dec/2024:17:06:14 +0100] "GET //wp-includes/wlwmanif ... show more 2/Nov/2024:06:51:01 +0100128.199.168.43 - - [02/Dec/2024:17:06:14 +0100] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 79251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
2/Nov/2024:06:51:01 +0100128.199.168.43 - - [02/Dec/2024:17:06:16 +0100] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 79251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
2/Nov/2024:06:51:01 +0100128.199.168.43 - - [02/Dec/2024:17:06:17 +0100] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 79255 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
rdpguard.com
2024-12-02 15:55:29
(4 hours ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
geot
2024-12-02 13:19:23
(7 hours ago)
17 requests, including :
GET //cms/wp-includes/wlwmanifest.xml HTTP/1.1
GET //wp1/wp-in ... show more 17 requests, including :
GET //cms/wp-includes/wlwmanifest.xml HTTP/1.1
GET //wp1/wp-includes/wlwmanifest.xml HTTP/1.1
GET //news/wp-includes/wlwmanifest.xml HTTP/1.1
GET //sito/wp-includes/wlwmanifest.xml HTTP/1.1
GET //website/wp-includes/wlwmanifest.xml HTTP/1.1
GET //test/wp-includes/wlwmanifest.xml HTTP/1.1
GET //xmlrpc.php?rsd HTTP/1.1
GET //web/wp-includes/wlwmanifest.xml HTTP/1.1
GET //wp-includes/wlwmanifest.xml HTTP/1.1
GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1
GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1 show less
Web App Attack
Sklurk
2024-12-02 12:07:53
(8 hours ago)
Web App Attack
Web App Attack
el-brujo
2024-12-02 09:37:00
(10 hours ago)
Cloudflare WAF: Request Path: //xmlrpc.php Request Query: ?rsd Host: elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: //xmlrpc.php Request Query: ?rsd Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36 Action: managed_challenge Source: firewallManaged ASN Description: DIGITALOCEAN-ASN Country: SG Method: GET Timestamp: 2024-12-02T09:37:00Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Hacking
SQL Injection
Web App Attack
Rosh
2024-12-02 08:36:00
(11 hours ago)
[12/02/24 09:36:00] 1 attack: //xmlrpc.php?rsd (severity 6);
Web App Attack
Cloudkul Cloudkul
2024-12-02 07:00:09
(13 hours ago)
Multiple unauthorized attempts to access web resources
Brute-Force
Web App Attack
Axel
2024-12-01 19:10:50
(1 day ago)
Attempted access to flagged sensitive file. Full access log entry: 128.199.168.43 - - [01/Dec/2024:0 ... show more Attempted access to flagged sensitive file. Full access log entry: 128.199.168.43 - - [01/Dec/2024:09:44:36 -0500] "GET //test/wp-includes/wlwmanifest.xml HTTP/1.1" 404 604 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" show less
Brute-Force
spyra.rocks
2024-12-01 18:06:17
(1 day ago)
WordPress
Web App Attack
URAN Publishing Service
2024-12-01 14:58:48
(1 day ago)
128.199.168.43 - - [01/Dec/2024:16:58:47 +0200] "GET /xmlrpc.php?rsd HTTP/1.1" 404 196 "-" "Mozilla/ ... show more 128.199.168.43 - - [01/Dec/2024:16:58:47 +0200] "GET /xmlrpc.php?rsd HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
128.199.168.43 - - [01/Dec/2024:16:58:47 +0200] "GET /xmlrpc.php?rsd HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
... show less
Web App Attack
lyratris.com
2024-12-01 14:48:02
(1 day ago)
Layer 7 HTTP Flood
DDoS Attack
Anonymous
2024-12-01 13:12:14
(1 day ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
el-brujo
2024-12-01 11:33:42
(1 day ago)
[Sun Dec 01 12:33:41.206389 2024] [proxy_fcgi:error] [pid 1634245:tid 1635420] [client 128.199.168.4 ... show more [Sun Dec 01 12:33:41.206389 2024] [proxy_fcgi:error] [pid 1634245:tid 1635420] [client 128.199.168.43:60870] AH01071: Got error 'Primary script unknown'
[Sun Dec 01 12:33:41.606038 2024] [proxy_fcgi:error] [pid 1713787:tid 1713892] [client 128.199.168.43:60990] AH01071: Got error 'Primary script unknown'
... show less
Hacking
Web App Attack