๐ฆ๐บ
MAGIC
2024-08-14 00:01:59
(1 year ago)
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ซ๐ฎ
bittiguru.fi
2024-08-10 11:23:10
(1 year ago)
38.111.114.50 - - \[10/Aug/2024:14:22:58 +0300\] "POST /xmlrpc.php HTTP/1.1" 200 417 "-" "Mozilla/5. ...
show more
38.111.114.50 - - \[10/Aug/2024:14:22:58 +0300\] "POST /xmlrpc.php HTTP/1.1" 200 417 "-" "Mozilla/5.0 \(Macintosh\; Intel Mac OS X 10_15_7\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/125.0.6422.60 Safari/537.36" "-"
38.111.114.50 - - \[10/Aug/2024:14:23:08 +0300\] "POST /xmlrpc.php HTTP/1.1" 200 417 "-" "Mozilla/5.0 \(Macintosh\; Intel Mac OS X 10_15_7\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/125.0.6422.60 Safari/537.36" "-"
...
show less
Hacking
Brute-Force
Web App Attack
๐ฉ๐ช
www.hazi.ro
2024-08-10 02:39:57
(1 year ago)
[2024-08-10 02:39:57] SSH Bruteforce Attack
Brute-Force
SSH
๐ณ๐ฑ
wlt-blocker
2024-08-09 22:44:43
(1 year ago)
Attempts to login to mail server with wrong username and/or password
Brute-Force
๐ฎ๐น
Progetto1
2024-08-09 16:37:03
(1 year ago)
Mail - Multiple failed login attempts
Brute-Force
Exploited Host
๐ฒ๐น
Malta
2024-08-09 07:31:22
(1 year ago)
38.111.114.50 - - [09/Aug/2024:09:31:21 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ...
show more
38.111.114.50 - - [09/Aug/2024:09:31:21 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36"
Brute-force password attempt
show less
Hacking
Brute-Force
Web App Attack
๐บ๐ธ
nowyouknow
2024-08-08 23:06:14
(1 year ago)
(From [email protected] ) Hey there,
I stumbled upon your site and I wanted to reach ...
show more
(From [email protected] ) Hey there,
I stumbled upon your site and I wanted to reach out with something cool. Iโm with a PR agency, and weโd like to offer you a complimentary press release for your business! Our publicists will whip up a professional, newsworthy press release thatโll boost your visibility and grab some extra attention.
Sound good? Just click the chat link below to drop in some details, and weโll take care of the rest. No catchโjust a little boost for your biz!
Hereโs my chat page:
https://swiy.co/press-release-offer
show less
Phishing
Web Spam
๐ฆ๐บ
MAGIC
2024-08-07 01:01:31
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฉ๐ช
CommanderRoot
2024-07-27 06:33:38
(1 year ago)
Invalid HTTP request flood
DDoS Attack
Web Spam
๐ฒ๐น
Malta
2024-07-22 00:39:41
(1 year ago)
38.111.114.50 - - [22/Jul/2024:02:39:41 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ...
show more
38.111.114.50 - - [22/Jul/2024:02:39:41 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36"
Brute-force password attempt
show less
Hacking
Brute-Force
Web App Attack
๐ช๐ธ
el-brujo
2024-07-21 00:45:10
(1 year ago)
DDoS attack Layer 7
DDoS Attack
๐ช๐ธ
el-brujo
2024-07-20 22:46:06
(1 year ago)
Cloudflare WAF: Request Path: / Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows N ...
show more
Cloudflare WAF: Request Path: / Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: AS-GLOBALTELEHOST Country: CA Method: GET Timestamp: 2024-07-20T22:46:06Z ruleId: aeb5687324bf472cb5c675966fa59d23. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐ฆ๐บ
oncord
2024-07-20 04:56:11
(1 year ago)
Form spam
Web Spam
๐ฉ๐ช
ger-stg-sifi1
2024-07-19 02:52:08
(1 year ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-18 18:59:55
(1 year ago)
(mod_security) mod_security (id:240335) triggered by 38.111.114.50 (50-114-111-38.clients.gthost.com ...
show more
(mod_security) mod_security (id:240335) triggered by 38.111.114.50 (50-114-111-38.clients.gthost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 18 14:59:50.478689 2024] [security2:error] [pid 22346:tid 22346] [client 38.111.114.50:60086] [client 38.111.114.50] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 38.111.114.50 (+1 hits since last alert)|radicalchange.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "radicalchange.org"] [uri "/xmlrpc.php"] [unique_id "ZplmJh6WcqO-ZqBAVJ_--gAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack