Secure Gateway®️
2024-11-26 22:01:06
(1 week ago)
Report By Secure Gateway Security Team: Brute Force Login Attempt
SQL Injection
ALSCO®️
2024-11-26 22:01:06
(1 week ago)
Report By ALSCO Security Team: SQL Injection Attempt Detected
Hacking
TPI-Abuse
2024-11-08 22:34:54
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 45.92.229.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 08 17:34:38.843275 2024] [security2:error] [pid 4219:tid 4219] [client 45.92.229.53:41253] [client 45.92.229.53] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.14"] [uri "/.env"] [unique_id "Zy6R_pRgQL78a31vO0GcOwAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-10-22 09:00:53
(1 month ago)
Web App Attack
TPI-Abuse
2024-08-29 14:48:08
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 45.92.229.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 29 10:48:02.183137 2024] [security2:error] [pid 18787:tid 18787] [client 45.92.229.53:46609] [client 45.92.229.53] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grandpont-house.org"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "ZtCKItv-4fnEEZHRt3LJXQAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
Jim Keir
2024-08-28 12:49:04
(3 months ago)
2024-08-28 12:49:03 45.92.229.53 File scanning, blocking 45.92.229.53 for 5 minutes
Web App Attack
octageeks.com
2024-08-28 04:10:16
(3 months ago)
Wordpress malicious attack:[octascan]
Web App Attack
Mendip_Defender
2024-08-28 03:18:28
(3 months ago)
45.92.229.53 - - [28/Aug/2024:04:18:29 +0100] "GET /dropdown.php HTTP/1.0" 404 180 "-" "Go-http-clie ... show more 45.92.229.53 - - [28/Aug/2024:04:18:29 +0100] "GET /dropdown.php HTTP/1.0" 404 180 "-" "Go-http-client/1.1"
45.92.229.53 - - [28/Aug/2024:04:18:30 +0100] "GET /wp-content/updates.php HTTP/1.0" 404 180 "-" "Go-http-client/1.1"
... show less
Hacking
Web App Attack
Anonymous
2024-08-28 03:00:30
(3 months ago)
wordpress-trap
Web App Attack
TPI-Abuse
2024-08-24 21:03:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 45.92.229.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 24 17:03:28.740964 2024] [security2:error] [pid 25864:tid 25882] [client 45.92.229.53:50715] [client 45.92.229.53] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aafm.us"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "ZspKoAjgyyzC2UJM5YOXJgAAAJA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-24 07:44:06
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 45.92.229.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 24 03:44:01.882326 2024] [security2:error] [pid 401139:tid 401139] [client 45.92.229.53:17979] [client 45.92.229.53] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.67ronin.com"] [uri "/wp-content/plugins/wp-config.php"] [unique_id "ZsmPQRl2DtdtZVtiVVqI3gAAAAw"], referer: http://67ronin.com/wp-content/plugins/wp-config.php show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-08-23 23:00:03
(3 months ago)
wordpress-trap
Web App Attack
4server
2024-08-22 05:42:29
(3 months ago)
[ThuAug2207:40:25.0559042024][security2:error][pid2475468:tid2475565][client45.92.229.53:0][client45 ... show more [ThuAug2207:40:25.0559042024][security2:error][pid2475468:tid2475565][client45.92.229.53:0][client45.92.229.53]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"/util/php/eval-stdin\\\\\\\\.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf\"][line\"304\"][id\"393782\"][rev\"1\"][msg\"Atomicorp.comWAFRules-VirtualJustInTimePatch:PGPevalstdinattackblocked\"][severity\"CRITICAL\"][hostname\"kiteinvest.ch\"][uri\"/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php\"][unique_id\"ZsbPSZseWcv7-vKCKiCS9QAAABY\"][ThuAug2207:40:56.7237352024][security2:error][pid2475461:tid2475512][client45.92.229.53:0][client45.92.229.53]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"wp-content/uploads/.\*\\\\\\\\.ph\(\?:p\|tml\|t\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf\"][line\"5056\"][id\"382238\"][rev\"2\"][msg\"Atomicorp.comWAFRules-VirtualJustInTimePatch:PHPfileexecutioninuploadsdirectorydenied\"][data\"wp-content/uploads/index.php\"][severity\"CR show less
Port Scan
Brute-Force
Web App Attack
Anonymous
2024-08-21 23:54:22
(3 months ago)
wordpress-trap
Web App Attack
URAN Publishing Service
2024-08-21 04:00:24
(3 months ago)
45.92.229.53 - - [21/Aug/2024:06:57:21 +0300] "GET /wp-content/plugins/Core-Econ/upH.php HTTP/1.1" 4 ... show more 45.92.229.53 - - [21/Aug/2024:06:57:21 +0300] "GET /wp-content/plugins/Core-Econ/upH.php HTTP/1.1" 404 274 "-" "Go-http-client/1.1"
45.92.229.53 - - [21/Aug/2024:07:00:23 +0300] "GET /wp-admin/dropdown.php HTTP/1.1" 404 274 "-" "Go-http-client/1.1"
... show less
Web App Attack