ghostwarriors
2024-12-19 06:50:03
(1 month ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
openstrike.co.uk
2024-12-19 06:12:52
(1 month ago)
13 attacks on Wordpress URLs, PHP URLs:
GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1
GE ... show more 13 attacks on Wordpress URLs, PHP URLs:
GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1
GET /xmlrpc.php?rsd HTTP/1.1 show less
Web App Attack
taivas.nl
2024-12-19 05:32:17
(1 month ago)
Many_bad_calls
Web App Attack
TPI-Abuse
2024-12-19 05:29:48
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 181.214.218.177 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 181.214.218.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 19 00:29:41.106874 2024] [security2:error] [pid 2445568:tid 2445568] [client 181.214.218.177:54755] [client 181.214.218.177] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.mcbrearty.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.mcbrearty.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z2OvRVNQdp9w4v9ZX_Ey8AAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
octageeks.com
2024-12-19 05:08:20
(1 month ago)
Wordpress malicious attack:[octawpauthor]
Web App Attack
ghostwarriors
2024-12-19 04:20:05
(1 month ago)
Attempts against non-existent wp-login
Brute-Force
Web App Attack
TPI-Abuse
2024-12-19 03:49:28
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 181.214.218.177 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 181.214.218.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 18 22:49:22.039448 2024] [security2:error] [pid 931:tid 931] [client 181.214.218.177:14123] [client 181.214.218.177] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.profitablepurposes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.profitablepurposes.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z2OXwnoR8kciCT3GPddMhwAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
WeekendWeb
2024-12-19 02:54:58
(1 month ago)
Wordpress Vunerability attack
Web App Attack
cmbplf
2024-12-19 02:26:02
(1 month ago)
156 requests to */wp-includes/wlwmanifest.xml
Brute-Force
Bad Web Bot
Anonymous
2024-12-19 00:39:24
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Savvii
2024-12-19 00:09:19
(1 month ago)
10 attempts against mh-misc-ban on ec102959
Web App Attack
Dolphi
2024-12-18 23:20:05
(1 month ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
strefapi_com
2024-12-18 23:10:38
(1 month ago)
Brute-force web
...
Hacking
Brute-Force
Web App Attack
TPI-Abuse
2024-12-18 22:57:08
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 181.214.218.177 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 181.214.218.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 18 17:57:03.593263 2024] [security2:error] [pid 27087:tid 27087] [client 181.214.218.177:4036] [client 181.214.218.177] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||rotentendales.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rotentendales.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z2NTPwrZINSVPLHla5v2QgAAABg"] show less
Brute-Force
Bad Web Bot
Web App Attack
Tripwire
2024-12-18 22:44:18
(1 month ago)
Scanning for exploits - //wp-includes/ID3/license.txt
Web App Attack