Anonymous
2024-10-27 19:48:10
(2 months ago)
$f2bV_matches
Brute-Force
octageeks.com
2024-10-23 04:06:13
(2 months ago)
Wordpress malicious attack:[octablocked]
Web App Attack
robotstxt
2024-10-22 22:42:55
(2 months ago)
52.169.24.106 - - [22/Oct/2024:22:41:59 +0000] "GET /cgi-bin/plugins.php HTTP/1.1" 404 61278 "-" rt= ... show more 52.169.24.106 - - [22/Oct/2024:22:41:59 +0000] "GET /cgi-bin/plugins.php HTTP/1.1" 404 61278 "-" rt="0.104" "-" "-" h="www.wpvulnerability.com" sn="www.wpvulnerability.com" ru="/cgi-bin/plugins.php" u="/index.php" ucs="-" ua="unix:/var/run/php/wpvulnerability82.sock" us="404" uct="0.000" urt="0.103"
52.169.24.106 - - [22/Oct/2024:22:42:00 +0000] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 404 61278 "-" rt="0.118" "-" "-" h="www.wpvulnerability.com" sn="www.wpvulnerability.com" ru="/cgi-bin/xmrlpc.php" u="/index.php" ucs="-" ua="unix:/var/run/php/wpvulnerability82.sock" us="404" uct="0.000" urt="0.118"
52.169.24.106 - - [22/Oct/2024:22:42:13 +0000] "GET /cgi-bin/file.php HTTP/1.1" 404 61278 "-" rt="0.122" "-" "-" h="www.wpvulnerability.com" sn="www.wpvulnerability.com" ru="/cgi-bin/file.php" u="/index.php" ucs="-" ua="unix:/var/run/php/wpvulnerability82.sock" us="404" uct="0.000" urt="0.122"
52.169.24.106 - - [22/Oct/2024:22:42:14 +0000] "GET /cgi-bin/404.php HTTP/1.1" 404 61278 "-" rt="0.118" "
... show less
Bad Web Bot
Anonymous
2024-10-22 22:09:43
(2 months ago)
Scan for exploitable WordPress files/information, or other brute force attempts.
Brute-Force
Web App Attack
Anonymous
2024-10-22 21:05:37
(2 months ago)
wordpress-trap
Web App Attack
tvipper.com
2024-10-22 18:38:49
(2 months ago)
Auto reported by IDS
Brute-Force
INTEQ
2024-10-22 17:36:45
(2 months ago)
Web attack from 52.169.24.106
Web App Attack
mawan
2024-10-22 16:34:57
(2 months ago)
Suspected of having performed illicit activity on AMS server.
Web App Attack
mondor.ro
2024-10-22 08:46:58
(2 months ago)
Cluster member 148.251.176.225 (DE/Germany/antares.webyouridea.ro) said, TEMPDENY 52.169.24.106, Rea ... show more Cluster member 148.251.176.225 (DE/Germany/antares.webyouridea.ro) said, TEMPDENY 52.169.24.106, Reason:[52.169.24.106 (IE/Ireland/-), more than 60 Apache 404 hits in the last 3600 secs]; Ports: 80,443; Direction: in; Trigger: LF_CLUSTER; Logs: show less
Port Scan
strefapi_com
2024-10-22 08:39:45
(2 months ago)
Brute-force web
...
Hacking
Brute-Force
Web App Attack
Major Hostility
2024-10-22 08:07:49
(2 months ago)
"GET /wp-includes/certificates/plugins.php HTTP/1.1" 404
"GET /wp-admin/user/plugins.php HTTP/ ... show more "GET /wp-includes/certificates/plugins.php HTTP/1.1" 404
"GET /wp-admin/user/plugins.php HTTP/1.1" 404
"GET /.well-known/acme-challenge/plugins.php HTTP/1.1" 404
"GET /wp-includes/customize/plugins.php HTTP/1.1" 404
"GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 404
"GET /wp-admin/css/colors/blue/plugins.php HTTP/1.1" 404
"GET /wp-content/themes/plugins.php HTTP/1.1" 404
"GET /wp-includes/ID3/plugins.php HTTP/1.1" 404
"GET /wp-admin/css/plugins.php HTTP/1.1" 404
"GET /wp-admin/includes/plugins.php HTTP/1.1" 404
"GET /wp-admin/network/plugins.php HTTP/1.1" 404
"GET /wp-admin/images/plugins.php HTTP/1.1" 404
"GET /wp-admin/maint/plugins.php HTTP/1.1" 404
"GET /wp-content/upgrade/plugins.php HTTP/1.1" 404
% show less
Web App Attack
evr
2024-10-22 06:37:37
(2 months ago)
[Fail2Ban]: Jail apache-noscript triggered 5 time(s) for 52.169.24.106.
[Tue Oct 22 08:37:33.7 ... show more [Fail2Ban]: Jail apache-noscript triggered 5 time(s) for 52.169.24.106.
[Tue Oct 22 08:37:33.780079 2024] [proxy_fcgi:error] [pid 108588:tid 108635] [client 52.169.24.106:0] AH01071: Got error 'Primary script unknown'
[Tue Oct 22 08:37:34.034835 2024] [proxy_fcgi:error] [pid 108588:tid 108634] [client 52.169.24.106:0] AH01071: Got error 'Primary script unknown'
[Tue Oct 22 08:37:34.034835 2024] [proxy_fcgi:error] [pid 108588:tid 108634] [client 52.169.24.106:0] AH01071: Got error 'Primary script unknown'
[Tue Oct 22 08:37:36.503935 2024] [proxy_fcgi:error] [pid 108588:tid 108629] [client 52.169.24.106:0] AH01071: Got error 'Primary script unknown'
... show less
Hacking
Web App Attack
Anonymous
2024-10-22 06:21:27
(2 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
advena
2024-10-22 05:45:56
(2 months ago)
52.169.24.106 (AS8075 MICROSOFT-CORP-MSN-AS-BLOCK) was intercepted at 2024-10-22T05:43:54Z after vio ... show more 52.169.24.106 (AS8075 MICROSOFT-CORP-MSN-AS-BLOCK) was intercepted at 2024-10-22T05:43:54Z after violating WAF directive: 7994335d116849f7a0ab6b771d1d0db7. Pre-cautionary/corrective action applied: block. show less
Web Spam
Hacking
Brute-Force
Web App Attack
Anonymous
2024-10-22 05:44:26
(2 months ago)
wordpress-trap
Web App Attack