URAN Publishing Service
2024-08-23 00:15:41
(1 month ago)
193.37.32.90 - - [23/Aug/2024:03:10:06 +0300] "GET /wp-content/style-css.php HTTP/1.1" 404 272 "http ... show more 193.37.32.90 - - [23/Aug/2024:03:10:06 +0300] "GET /wp-content/style-css.php HTTP/1.1" 404 272 "http://www.ujdvc.com.ua/wp-content/style-css.php" "Go-http-client/1.1"
193.37.32.90 - - [23/Aug/2024:03:15:40 +0300] "GET /wp-includes/class-response.php HTTP/1.1" 404 272 "http://www.ujdvc.com.ua/wp-includes/class-response.php" "Go-http-client/1.1"
... show less
Web App Attack
uhlhosting
2024-08-22 19:28:20
(1 month ago)
werbeartikeldruck.ch 193.37.32.90 - - [22/Aug/2024:21:28:20.031455 +0200] "GET /randkeyword.PhP7 HTT ... show more werbeartikeldruck.ch 193.37.32.90 - - [22/Aug/2024:21:28:20.031455 +0200] "GET /randkeyword.PhP7 HTTP/1.1" 403 199 "-" "-" ZseRVFN4H1zQU7YwJLY6ogAAAM4 "-" /apache/20240822/20240822-2128/20240822-212820-ZseRVFN4H1zQU7YwJLY6ogAAAM4 0 1681 md5:ed54efad5822c864c0c7e8525abc580f
werbeartikeldruck.ch 193.37.32.90 - - [22/Aug/2024:21:28:20.192094 +0200] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 403 199 "-" "-" ZseRVFN4H1zQU7YwJLY6owAAAMk "-" /apache/20240822/20240822-2128/20240822-212820-ZseRVFN4H1zQU7YwJLY6owAAAMk 0 1734 md5:6329a43e7780ec82d6f468381d80d616
werbeartikeldruck.ch 193.37.32.90 - - [22/Aug/2024:21:28:20.355261 +0200] "GET /ticket/vendor/htmlawed/htmlawed/gel4y.php HTTP/1.1" 403 199 "-" "-" ZseRVFN4H1zQU7YwJLY6pAAAANI "-" /apache/20240822/20240822-2128/20240822-212820-ZseRVFN4H1zQU7YwJLY6pAAAANI 0 1730 md5:898d889ee7c611ec7798b89b5b49d31c
werbeartikeldruck.ch 193.37.32.90 - - [22/Aug/2024:21:28:20.515442 +0200] "GET /glpi/vendor/network.php HTTP/1.1" 403 199 "-
... show less
DDoS Attack
Brute-Force
TPI-Abuse
2024-08-22 15:19:57
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 193.37.32.90 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 193.37.32.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 22 11:19:50.625792 2024] [security2:error] [pid 17245:tid 17245] [client 193.37.32.90:61169] [client 193.37.32.90] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmelson.com"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "ZsdXFqjIrwu4L8KlxhLsHgAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-22 09:57:29
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 193.37.32.90 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 193.37.32.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 22 05:57:26.193279 2024] [security2:error] [pid 17375:tid 17375] [client 193.37.32.90:62327] [client 193.37.32.90] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scandiacarpets.com"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "ZscLhvrDkjomeR9mb5Fx6QAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-08-19 07:30:47
(1 month ago)
wordpress-trap
Web App Attack
Jim Keir
2024-08-17 07:20:19
(1 month ago)
2024-08-17 07:20:18 193.37.32.90 File scanning, blocking 193.37.32.90 for 5 minutes
Web App Attack
Anonymous
2024-08-16 21:23:43
(1 month ago)
wordpress-trap
Web App Attack
Anonymous
2024-08-16 15:28:22
(1 month ago)
wordpress-trap
Web App Attack
Anonymous
2024-08-16 04:36:43
(1 month ago)
wordpress-trap
Web App Attack
Anonymous
2024-08-15 07:25:18
(1 month ago)
wordpress-trap
Web App Attack
Francio
2024-08-11 17:06:14
(1 month ago)
abuser
Brute-Force
Anonymous
2024-08-11 10:52:35
(1 month ago)
wordpress-trap
Web App Attack
expandmade.com
2024-08-07 03:03:02
(1 month ago)
trolling for installation vulnerabilities [07/Aug/2024:03:03:02 "GET /wp-content/uploads/small.php"]
Web App Attack
TPI-Abuse
2024-08-06 17:41:22
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 193.37.32.90 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 193.37.32.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 13:41:16.571980 2024] [security2:error] [pid 17577:tid 17577] [client 193.37.32.90:30829] [client 193.37.32.90] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "circleofsound.org"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "ZrJgPDoSraSDMfUCme3MyQAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-03 09:17:58
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 193.37.32.90 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 193.37.32.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 03 05:17:53.627289 2024] [security2:error] [pid 19578:tid 19578] [client 193.37.32.90:21247] [client 193.37.32.90] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wailthelifeofbudpowell.com"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "Zq31we4k27yGVlmcE3n9_wAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack