Anonymous
2024-12-06 06:07:52
(3 days ago)
(wordpress) Failed wordpress login from 165.227.150.244 (DE/Germany/-)
Brute-Force
octageeks.com
2024-12-06 05:07:49
(3 days ago)
Wordpress malicious attack:[octa404]
Web App Attack
nationaleventpros.com
2024-12-06 03:25:10
(3 days ago)
WordPress login attempt
Brute-Force
mennica.com.pl
2024-12-06 00:30:20
(3 days ago)
[Fri Dec 06 01:30:15.953111 2024] [access_compat:error] [pid 20680] [client 165.227.150.244:41702] A ... show more [Fri Dec 06 01:30:15.953111 2024] [access_compat:error] [pid 20680] [client 165.227.150.244:41702] AH01797: client denied by server configuration: /usr/share/wordpress/wp-login.php
[Fri Dec 06 01:30:16.515580 2024] [access_compat:error] [pid 27916] [client 165.227.150.244:41732] AH01797: client denied by server configuration: /usr/share/wordpress/wp-login.php
[Fri Dec 06 01:30:17.081467 2024] [access_compat:error] [pid 44252] [client 165.227.150.244:41746] AH01797: client denied by server configuration: /usr/share/wordpress/wp-login.php
[Fri Dec 06 01:30:17.622366 2024] [access_compat:error] [pid 27917] [client 165.227.150.244:41760] AH01797: client denied by server configuration: /usr/share/wordpress/wp-login.php
[Fri Dec 06 01:30:18.162783 2024] [access_compat:error] [pid 7235] [client 165.227.150.244:41778] AH01797: client denied by server configuration: /usr/share/wordpress/wp-login.php
... show less
Web App Attack
Rizzy
2024-12-05 22:58:58
(3 days ago)
Multiple WAF Violations
Brute-Force
Web App Attack
Anonymous
2024-12-05 20:50:04
(3 days ago)
| CMS (WordPress or Joomla) brute force attempt 10 times (rewritten)
Hacking
SQL Injection
Web App Attack
Markus Woegerbauer
2024-12-05 18:50:30
(3 days ago)
(wordpress) Failed wordpress login from 165.227.150.244 (DE/Germany/-)
Brute-Force
VHosting
2024-12-05 18:31:12
(3 days ago)
Attempt from 165.227.150.244, reason: FailedCaptchaVerify
DDoS Attack
Bad Web Bot
Anonymous
2024-12-05 17:46:22
(3 days ago)
apache-wordpress-login
Brute-Force
Web App Attack
TPI-Abuse
2024-11-14 05:22:59
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.150.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 165.227.150.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 14 00:22:54.658187 2024] [security2:error] [pid 15666:tid 15666] [client 165.227.150.244:37564] [client 165.227.150.244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bamedica.com"] [uri "/wp-config.php~"] [unique_id "ZzWJLiODf87c7IbLGJlbggAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-13 20:53:50
(3 weeks ago)
(mod_security) mod_security triggered on hostname [redacted] 165.227.150.244 (DE/Germany/-)
SQL Injection
COMAITE
2024-11-13 20:27:48
(3 weeks ago)
Suspicious URL access.
Web App Attack
TPI-Abuse
2024-11-13 07:34:22
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.150.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 165.227.150.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 13 02:34:19.075748 2024] [security2:error] [pid 234751:tid 234751] [client 165.227.150.244:44862] [client 165.227.150.244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arsenalfordemocracy.com"] [uri "/wp-config.php~"] [unique_id "ZzRWeyi8xDTNRpj8-qPNBQAAABU"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-13 06:19:41
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.150.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 165.227.150.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 13 01:19:37.307181 2024] [security2:error] [pid 8362:tid 8364] [client 165.227.150.244:57680] [client 165.227.150.244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotelpuertadelsolcr.com"] [uri "/wp-config.php~"] [unique_id "ZzRE-dHuZK3LSkObJDXkAAAAAEA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-13 02:26:35
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.150.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 165.227.150.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 12 21:26:28.504609 2024] [security2:error] [pid 16018:tid 16018] [client 165.227.150.244:47890] [client 165.227.150.244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "guarinofurnituredesigns.com"] [uri "/wp-config.php~"] [unique_id "ZzQOVKZj9CiskYM2SzSISAAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack