Anonymous
2024-11-20 14:58:38
(2 months ago)
wp admin page access attempt
...
Hacking
Web App Attack
Anonymous
2024-11-20 14:49:45
(2 months ago)
Scenario: crowdsecurity/http-crawl-non_statics
Bad Web Bot
Anonymous
2024-11-20 12:49:16
(2 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
LRob.fr
2024-11-20 11:45:05
(2 months ago)
Repeated 403 errors, blocked by Fail2ban in custom-403 jail
Bad Web Bot
Ba-Yu
2024-11-20 10:51:32
(2 months ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
paulshipley.com.au
2024-11-20 08:36:49
(2 months ago)
levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:29 +1100] "GET /wp-content/themes/i ... show more levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:29 +1100] "GET /wp-content/themes/index.php HTTP/1.1" 403 3878 "-" "-"
levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:30 +1100] "GET /wp-includes/index.php HTTP/1.1" 403 627 "-" "-"
levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:30 +1100] "GET /about/function.php HTTP/1.1" 404 96666 "-" "-"
levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:33 +1100] "GET /wp-trackback.php HTTP/1.1" 404 959 "-" "-"
levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:37 +1100] "GET /cgi-bin/ HTTP/1.1" 404 96634 "-" "-"
levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:40 +1100] "GET /bak.php HTTP/1.1" 404 96632 "-" "-"
levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:43 +1100] "GET /text.php HTTP/1.1" 404 96635 "-" "-"
levellagiftware.com.au:443 52.178.164.202 - - [20/Nov/2024:19:36:45 +1100] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 403
... show less
Web App Attack
paulshipley.com.au
2024-11-20 04:43:30
(2 months ago)
levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:11 +1100] "GET /wp-content/themes ... show more levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:11 +1100] "GET /wp-content/themes/index.php HTTP/1.1" 403 3878 "-" "-"
levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:11 +1100] "GET /wp-includes/index.php HTTP/1.1" 403 627 "-" "-"
levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:12 +1100] "GET /about/function.php HTTP/1.1" 404 141496 "-" "-"
levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:15 +1100] "GET /wp-trackback.php HTTP/1.1" 404 977 "-" "-"
levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:17 +1100] "GET /cgi-bin/ HTTP/1.1" 404 141489 "-" "-"
levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:20 +1100] "GET /bak.php HTTP/1.1" 404 141489 "-" "-"
levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:23 +1100] "GET /text.php HTTP/1.1" 404 141490 "-" "-"
levellapromotions.com.au:443 52.178.164.202 - - [20/Nov/2024:15:43:26 +1100] "GET /wp-content/themes/seotheme/ma
... show less
Web App Attack
penjaga BRIN
2024-11-20 03:02:20
(2 months ago)
apache-auth-111
Web App Attack
Anonymous
2024-11-19 20:14:04
(2 months ago)
(WPLOGIN) WP Login Attack 52.178.164.202 (IE/Ireland/-): 5 in the last 3600 secs; Ports: *; Directio ... show more (WPLOGIN) WP Login Attack 52.178.164.202 (IE/Ireland/-): 5 in the last 3600 secs; Ports: *; Direction: 1 show less
Brute-Force
SSH
Joeri Frantz
2024-11-19 14:23:12
(2 months ago)
Failed login attempt detected by Fail2Ban in recidive jail
Brute-Force
Anonymous
2024-11-19 13:34:12
(2 months ago)
Fail2Ban apache-noscript
Bad Web Bot
MogBox
2024-11-19 13:02:43
(2 months ago)
(RSRCTROLL) Vulnerability Trolling: GET/POST /wp-includes/index.php 52.178.164.202 (IE/Ireland/-): 1 ... show more (RSRCTROLL) Vulnerability Trolling: GET/POST /wp-includes/index.php 52.178.164.202 (IE/Ireland/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 52.178.164.202 - - [19/Nov/2024:08:02:39 -0500] "GET /wp-includes/index.php HTTP/2.0" 404 167 "-" "-" show less
Hacking
Anonymous
2024-11-19 12:24:18
(2 months ago)
wordpress-trap
Web App Attack
hostseries
2024-11-19 07:52:41
(2 months ago)
Trigger: LF_MODSEC
Brute-Force
Anonymous
2024-11-19 07:23:00
(2 months ago)
The attacker attempts to find known vulnerabilities
Web App Attack