๐ณ๐ฑ
BlueWire Hosting
2024-01-04 21:17:04
(2 years ago)
Probing for Wordpress vulnerabilities
Bad Web Bot
Web App Attack
๐ฉ๐ช
iNetWorker
2022-12-15 19:51:11
(3 years ago)
trolling for resource vulnerabilities
Web App Attack
๐ณ๐ฑ
MacLotsen
2022-12-10 04:44:48
(3 years ago)
[Sat Dec 10 10:44:43.697079 2022] [access_compat:error] [pid 633681] [client 164.90.152.238:44418] A ...
show more
[Sat Dec 10 10:44:43.697079 2022] [access_compat:error] [pid 633681] [client 164.90.152.238:44418] AH01797: client denied by server configuration: /var/www/ingestoffer.nl/wp-admin/admin-ajax.php
[Sat Dec 10 10:44:45.325945 2022] [access_compat:error] [pid 633683] [client 164.90.152.238:44436] AH01797: client denied by server configuration: /var/www/ingestoffer.nl/wp-admin/admin-ajax.php
[Sat Dec 10 10:44:46.959872 2022] [access_compat:error] [pid 633684] [client 164.90.152.238:44452] AH01797: client denied by server configuration: /var/www/ingestoffer.nl/wp-admin/admin-ajax.php
...
show less
Brute-Force
Web App Attack
๐ฉ๐ช
dwmp
2022-12-03 02:22:19
(3 years ago)
[Sat Dec 03 08:22:16.517415 2022] [authz_core:error] [pid 2980415:tid 139848765667072] [client 164.9 ...
show more
[Sat Dec 03 08:22:16.517415 2022] [authz_core:error] [pid 2980415:tid 139848765667072] [client 164.90.152.238:40944] AH01630: client denied by server configuration: /var/www/vhosts/bicarsrl.eu/httpdocs/wp-content/uploads/wp-blockdown.php
[Sat Dec 03 08:22:17.014165 2022] [authz_core:error] [pid 2980480:tid 139849604511488] [client 164.90.152.238:40946] AH01630: client denied by server configuration: /var/www/vhosts/bicarsrl.eu/httpdocs/wp-content/uploads/wp-temp-ali.php
[Sat Dec 03 08:22:17.481929 2022] [authz_core:error] [pid 2980415:tid 139849604511488] [client 164.90.152.238:40956] AH01630: client denied by server configuration: /var/www/vhosts/bicarsrl.eu/httpdocs/wp-content/uploads/wp-stream.php
[Sat Dec 03 08:22:17.944314 2022] [authz_core:error] [pid 2980480:tid 139849092818688] [client 164.90.152.238:53638] AH01630: client denied by server configuration: /var/www/vhosts/bicarsrl.eu/httpdocs/wp-content/uploads/wp-sili-report-site.php
[Sat Dec 03 08:22:18.439720 2022] [authz_core
...
show less
Brute-Force
๐จ๐ฟ
plzenskypruvodce.cz
2022-12-03 00:33:27
(3 years ago)
[Sat Dec 03 06:33:18.585576 2022] [access_compat:error] [pid 339972:tid 140518210090752] [client 164 ...
show more
[Sat Dec 03 06:33:18.585576 2022] [access_compat:error] [pid 339972:tid 140518210090752] [client 164.90.152.238:35894] AH01797: client denied by server configuration: /var/www/tzb-chmelarova.cz/www/wp-content/uploads/wp-blockup.php
[Sat Dec 03 06:33:25.146223 2022] [access_compat:error] [pid 339972:tid 140518310803200] [client 164.90.152.238:35954] AH01797: client denied by server configuration: /var/www/tzb-chmelarova.cz/www/wp-content/uploads/wp-blockdown.php
...
show less
Web App Attack
๐ช๐ธ
10dencehispahard SL
2022-12-02 01:27:19
(3 years ago)
Abusive use detected
Brute-Force
๐ง๐ท
AC - Team
2022-10-30 04:41:35
(3 years ago)
164.90.152.238 - - [30/Oct/2022:05:41:33 -0300] "GET /1index.php?673435=1 HTTP/1.1" 404 14440 "-" "M ...
show more
164.90.152.238 - - [30/Oct/2022:05:41:33 -0300] "GET /1index.php?673435=1 HTTP/1.1" 404 14440 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
...
show less
Exploited Host
Web App Attack
๐ง๐ท
AC - Team
2022-10-30 02:43:28
(3 years ago)
164.90.152.238 - - [30/Oct/2022:03:43:37 -0300] "GET /1index.php?673435=1 HTTP/1.1" 403 3282 "-" "Mo ...
show more
164.90.152.238 - - [30/Oct/2022:03:43:37 -0300] "GET /1index.php?673435=1 HTTP/1.1" 403 3282 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
...
show less
Exploited Host
Web App Attack
๐บ๐ธ
SleepyHosting
2022-10-29 06:52:08
(3 years ago)
(mod_security) mod_security (id:400010) triggered by 164.90.152.238 (US/United States/-): 5 in the l ...
show more
(mod_security) mod_security (id:400010) triggered by 164.90.152.238 (US/United States/-): 5 in the last 3600 secs
show less
Brute-Force
๐ญ๐บ
DumaNet
2022-10-29 02:10:15
(3 years ago)
Web app attack attempts, scanning for vulnerability.
Date: 2022 Oct 28. 21:18:49
Source IP: 164.90 ...
show more
Web app attack attempts, scanning for vulnerability.
Date: 2022 Oct 28. 21:18:49
Source IP: 164.90.152.238
Portion of the log(s):
164.90.152.238 - [28/Oct/2022:21:18:49 +0200] "GET /wp-content/themes/classic/inc/admin.php?673435=1 HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
164.90.152.238 - [28/Oct/2022:21:18:48 +0200] "POST /wp-admin/css/colors/radio.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
164.90.152.238 - [28/Oct/2022:21:18:47 +0200] "GET /wp-admin/css/colors/radio.php?673435=1 HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
164.90.152.238 - [28/Oct/2022:21:18:47 +0200] "POST /wp-admin/js/widgets/radio.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125
show less
Web App Attack
๐ญ๐บ
DumaNet
2022-10-29 01:53:47
(3 years ago)
Web app attack attempts, scanning for vulnerability.
Date: 2022 Oct 28. 21:07:45
Source IP: 164.90 ...
show more
Web app attack attempts, scanning for vulnerability.
Date: 2022 Oct 28. 21:07:45
Source IP: 164.90.152.238
Portion of the log(s):
164.90.152.238 - [28/Oct/2022:21:07:44 +0200] "GET /css/load.php?673435=1 HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
164.90.152.238 - [28/Oct/2022:21:07:43 +0200] "POST /contents.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
164.90.152.238 - [28/Oct/2022:21:07:42 +0200] "GET /contents.php?673435=1 HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
164.90.152.238 - [28/Oct/2022:21:07:42 +0200] "POST /css/contents.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
164.90.152.238 - [28/Oct/2022:21:07:41 +0200] "GET /css/
show less
Web App Attack
๐ง๐ท
AC - Team
2022-10-26 07:59:26
(3 years ago)
164.90.152.238 - - [26/Oct/2022:08:59:23 -0300] "GET /1.php HTTP/1.1" 404 25646 "-" "Mozilla/5.0 (Wi ...
show more
164.90.152.238 - - [26/Oct/2022:08:59:23 -0300] "GET /1.php HTTP/1.1" 404 25646 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
...
show less
Exploited Host
Web App Attack
๐ง๐ท
AC - Team
2022-10-26 01:01:26
(3 years ago)
164.90.152.238 - - [26/Oct/2022:02:01:31 -0300] "GET /1.php HTTP/1.1" 404 13092 "-" "Mozilla/5.0 (Wi ...
show more
164.90.152.238 - - [26/Oct/2022:02:01:31 -0300] "GET /1.php HTTP/1.1" 404 13092 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
...
show less
Exploited Host
Web App Attack
๐บ๐ธ
dtorrer
2022-10-25 09:40:09
(3 years ago)
This client attempted to login to an administrator account on a Website, or abused from another reso ...
show more
This client attempted to login to an administrator account on a Website, or abused from another resource.
show less
Brute-Force
Web App Attack
๐ง๐ท
AC - Team
2022-10-25 09:17:12
(3 years ago)
164.90.152.238 - - [25/Oct/2022:10:17:09 -0300] "GET /wp-admin/wp-admin.php HTTP/1.1" 404 24753 "-" ...
show more
164.90.152.238 - - [25/Oct/2022:10:17:09 -0300] "GET /wp-admin/wp-admin.php HTTP/1.1" 404 24753 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36"
...
show less
Exploited Host
Web App Attack