octageeks.com
2024-08-18 04:06:38
(4 weeks ago)
Wordpress malicious attack:[octablocked]
Web App Attack
octageeks.com
2024-08-16 04:06:59
(1 month ago)
Wordpress malicious attack:[octablocked]
Web App Attack
octageeks.com
2024-08-14 04:06:35
(1 month ago)
Wordpress malicious attack:[octablocked]
Web App Attack
Dolutech.com
2024-08-13 21:27:00
(1 month ago)
- Blocked due to mod_security rule 8
Brute-Force
SSH
octageeks.com
2024-08-12 04:06:44
(1 month ago)
Wordpress malicious attack:[octablocked]
Web App Attack
TPI-Abuse
2024-08-12 02:07:11
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.comput ... show more (mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 11 22:07:05.336623 2024] [security2:error] [pid 8943:tid 8943] [client 35.180.130.5:51788] [client 35.180.130.5] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bonvivantorganics.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZrluSe87bH41W5Nw7LW0_wAAAAk"], referer: www.bing.com show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-11 23:38:35
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.comput ... show more (mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 11 19:38:27.210665 2024] [security2:error] [pid 14786:tid 14786] [client 35.180.130.5:62310] [client 35.180.130.5] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bluestarplumberseasttexas.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZrlLcyfPZQz3qWIEvfYW1gAAAAE"], referer: www.bing.com show less
Brute-Force
Bad Web Bot
Web App Attack
rh24
2024-08-11 21:58:22
(1 month ago)
(mod_security) mod_security triggered on hostname [redacted] 35.180.130.5 (FR/France/ec2-35-180-130- ... show more (mod_security) mod_security triggered on hostname [redacted] 35.180.130.5 (FR/France/ec2-35-180-130-5.eu-west-3.compute.amazonaws.com) show less
SQL Injection
Anonymous
2024-08-11 20:34:51
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
TPI-Abuse
2024-08-11 18:36:56
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.comput ... show more (mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 11 14:36:50.365824 2024] [security2:error] [pid 22660:tid 22660] [client 35.180.130.5:60852] [client 35.180.130.5] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boasfrequencias.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZrkEwmE4B-qmAd6OMQcSoAAAAAM"], referer: www.bing.com show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-11 18:02:11
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.comput ... show more (mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 11 14:02:07.529114 2024] [security2:error] [pid 1791:tid 1791] [client 35.180.130.5:63444] [client 35.180.130.5] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bluemarineboats.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "Zrj8n0MVFlwZR1rX_SsZ1gAAAAA"], referer: www.bing.com show less
Brute-Force
Bad Web Bot
Web App Attack
FeG Deutschland
2024-08-11 17:06:01
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities - 13
Exploited Host
Web App Attack
TPI-Abuse
2024-08-11 17:01:35
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.comput ... show more (mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 11 13:01:29.269522 2024] [security2:error] [pid 19952:tid 19952] [client 35.180.130.5:49393] [client 35.180.130.5] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bonegym.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZrjuaTs2vO4gs5uxqCajbgAAAAc"], referer: www.bing.com show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-11 16:43:08
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.comput ... show more (mod_security) mod_security (id:210492) triggered by 35.180.130.5 (ec2-35-180-130-5.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 11 12:43:00.058488 2024] [security2:error] [pid 6019:tid 6019] [client 35.180.130.5:61212] [client 35.180.130.5] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bonesband.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZrjqFLbB1in8a7EF8HANlgAAAA0"], referer: www.bing.com show less
Brute-Force
Bad Web Bot
Web App Attack
BlueWire Hosting
2024-08-11 04:10:09
(1 month ago)
Probing for Wordpress vulnerabilities
Bad Web Bot
Web App Attack