Anonymous
2025-01-10 17:58:48
(1 week ago)
wordpress-trap
Web App Attack
URAN Publishing Service
2025-01-08 19:07:12
(1 week ago)
193.176.211.83 - - [08/Jan/2025:21:06:41 +0200] "GET /wp-content/mah.php HTTP/1.1" 404 272 "-" "Go-h ... show more 193.176.211.83 - - [08/Jan/2025:21:06:41 +0200] "GET /wp-content/mah.php HTTP/1.1" 404 272 "-" "Go-http-client/1.1"
193.176.211.83 - - [08/Jan/2025:21:07:09 +0200] "GET /xmlrpc.php HTTP/1.1" 404 272 "-" "Go-http-client/1.1"
... show less
Web App Attack
TPI-Abuse
2024-12-18 14:33:40
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 193.176.211.83 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 193.176.211.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 18 09:33:29.319129 2024] [security2:error] [pid 10381:tid 10381] [client 193.176.211.83:2729] [client 193.176.211.83] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dvdmasters.com"] [uri "/wp-config.php.txt"] [unique_id "Z2LdOaVcjBCdcQIKkSFDtwAAAA4"] show less
Brute-Force
Bad Web Bot
Web App Attack
london2038.com
2024-12-16 01:44:45
(1 month ago)
Attacking WordPress
193.176.211.83 - - [16/Dec/2024:02:44:41 +0100] "GET /wp-admin/admin-ajax. ... show more Attacking WordPress
193.176.211.83 - - [16/Dec/2024:02:44:41 +0100] "GET /wp-admin/admin-ajax.php?action=mcwp_table&mcwp_id=1&order[0][column]=0&columns[0][name]=name+AND+(SELECT+1+FROM+(SELECT(SLEEP(7)))aaaa)--+- HTTP/1.1" 403 17026 "-" "Mozilla/5.0 (Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less
Brute-Force
Web App Attack
Anonymous
2024-12-15 20:40:02
(1 month ago)
| SQL injection attempt.
Hacking
SQL Injection
Web App Attack
psauxit
2024-12-15 07:08:52
(1 month ago)
Fail2Ban - NGINX bad requests 400-401-403-404-444, high level vulnerability scanning, commonly xmlrp ... show more Fail2Ban - NGINX bad requests 400-401-403-404-444, high level vulnerability scanning, commonly xmlrpc_attack, wp-login brute force, excessive crawling/scraping show less
Hacking
Web App Attack
mnsf
2024-12-14 05:03:23
(1 month ago)
Too many Status 40X (11)
Brute-Force
Web App Attack
nyuuzyou
2024-12-13 23:29:43
(1 month ago)
Intensive scraping: /web?s=Outdoor%20clothing%20and%20equipment%20shop%20Balance%20of%20Pleasant%20R ... show more Intensive scraping: /web?s=Outdoor%20clothing%20and%20equipment%20shop%20Balance%20of%20Pleasant%20Ridge&country=eu-eu&scraper=marginalia. User-Agent: Mozilla/5.0 (Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0. show less
Bad Web Bot
RLDD
2024-12-13 21:12:59
(1 month ago)
WP probing -nov
Web App Attack
octageeks.com
2024-12-12 05:07:42
(1 month ago)
Wordpress malicious attack:[octascan]
Web App Attack
Anonymous
2024-12-11 05:52:48
(1 month ago)
Malicious activity detected
Hacking
Web App Attack
TPI-Abuse
2024-12-11 03:32:55
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 193.176.211.83 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 193.176.211.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 10 22:32:49.294830 2024] [security2:error] [pid 11763:tid 11763] [client 193.176.211.83:15227] [client 193.176.211.83] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kandocopies.com"] [uri "/wp-config.php.dist"] [unique_id "Z1kH4ZyfDWFu5hHeUFVuCQAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
sms.ru
2024-12-11 00:45:18
(1 month ago)
/wp-admin/maint/wp-damin.php
Web App Attack
mnsf
2024-12-10 12:09:49
(1 month ago)
Too many Status 40X (17)
Brute-Force
Web App Attack
Anonymous
2024-12-10 07:51:51
(1 month ago)
wordpress-trap
Web App Attack