πΊπΈ
bazter.pro
2025-11-25 20:24:29
(7 months ago)
Banned by nginx-ip-monitor. AbuseIPDB check unavailable, but critical attack detected (sensitive pat ...
show more
Banned by nginx-ip-monitor. AbuseIPDB check unavailable, but critical attack detected (sensitive path + 403). Total requests: 71. 404 errors: 0. Unique paths: 68. Sensitive paths: //wp-content/plugins/classic-editor/wp-login.php, //.tmb/wp-login.php, //.well-known/acme-challenge/wp-login.php.
show less
Web App Attack
π΅πΉ
Dolutech.com
2024-08-13 21:57:00
(1 year ago)
- Blocked due to mod_security rule 7
Brute-Force
SSH
π©πͺ
jasperedv.de
2024-08-10 00:22:16
(1 year ago)
Apache Login - Brutforcing
Brute-Force
Web App Attack
Anonymous
2024-08-09 19:15:48
(1 year ago)
52.237.251.117 - - [09/Aug/2024:21:15:40 +0200] "GET //wp-content/plugins/classic-editor/wp-login.ph ...
show more
52.237.251.117 - - [09/Aug/2024:21:15:40 +0200] "GET //wp-content/plugins/classic-editor/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:21:15:40 +0200] "GET //.tmb/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:21:15:41 +0200] "GET //.well-known/acme-challenge/wp-login.php HTTP/1.1" 200 2911 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:21:15:41 +0200] "GET //.well-known/pki-validation/wp-login.php HTTP/1.1" 200 2911 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:21:15:46 +0200] "GET //cgi-bin/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:21:15:46 +0200] "GET //images/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:21:15:47 +0200] "GET //wp-admin/css/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
...
show less
Brute-Force
ππ°
dwmp
2024-08-09 18:01:47
(1 year ago)
Url probing: /.tmb/wp-login.php
Web App Attack
Anonymous
2024-08-09 17:57:00
(1 year ago)
File vulnerability probing. Excessive crawling.
Brute-Force
Bad Web Bot
Web App Attack
πͺπΈ
el-brujo
2024-08-09 17:48:23
(1 year ago)
09/Aug/2024:19:48:23.274306 +0200Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ...
show more
09/Aug/2024:19:48:23.274306 +0200Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 52.237.251.117] ModSecurity: Warning. Pattern match "(?:;|\\\\\\\\{|\\\\\\\\||\\\\\\\\|\\\\\\\\||&|&&|\\\\\\\\n|\\\\\\\\r|\\\\\\\\$\\\\\\\\(|\\\\\\\\$\\\\\\\\(\\\\\\\\(|`|\\\\\\\\${|<\\\\\\\\(|>\\\\\\\\(|\\\\\\\\(\\\\\\\\s*\\\\\\\\))\\\\\\\\s*(?:{|\\\\\\\\s*\\\\\\\\(\\\\\\\\s*|\\\\\\\\w+=(?:[^\\\\\\\\s]*|\\\\\\\\$.*|\\\\\\\\$.*|<.*|>.*|\\\\\\\\'.*\\\\\\\\'|\\\\".*\\\\")\\\\\\\\s+|!\\\\\\\\s*|\\\\\\\\$)*\\\\\\\\s*(?:'|\\\\")*(?:[\\\\\\\\?\\\\\\\\*\\\\\\\\[\\\\\\\\]\\\\\\\\(\\\\\\\\)\\\\\\\\-\\\\\\\\|+\\\\\\\\w'\\\\"\\\\\\\\./\\\\\\\\\\\\\\\\]+/)?[\\\\\\\\\\\\\\\\'\\\\"]*(?:l[\\\\\\\\\\\\\\\\'\\\\"]* ..." at ARGS:sfilecontent. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "123"] [id "932100"] [msg "Remote Command Execution: Unix Command Injection"] [data "Matched Data: ; eval found within ARGS:sfilecontent: <?php function get($url) { $ch =
...
show less
Hacking
Web App Attack
Anonymous
2024-08-09 15:43:03
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
π¬π§
adnscom.net
2024-08-09 14:57:23
(1 year ago)
IPS trigger: Brute force WebApp/CMS scanning/attack
Brute-Force
Web App Attack
Anonymous
2024-08-09 13:55:49
(1 year ago)
52.237.251.117 - - [09/Aug/2024:15:55:45 +0200] "GET //wp-content/plugins/classic-editor/wp-login.ph ...
show more
52.237.251.117 - - [09/Aug/2024:15:55:45 +0200] "GET //wp-content/plugins/classic-editor/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:15:55:47 +0200] "GET //.tmb/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:15:55:47 +0200] "GET //.well-known/acme-challenge/wp-login.php HTTP/1.1" 200 2911 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:15:55:47 +0200] "GET //.well-known/pki-validation/wp-login.php HTTP/1.1" 200 2911 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:15:55:48 +0200] "GET //cgi-bin/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:15:55:48 +0200] "GET //images/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:15:55:48 +0200] "GET //wp-admin/css/wp-login.php HTTP/1.1" 404 442 "-" "Go-http-client/1.1"
...
show less
Brute-Force
ππΊ
HoneyPotEu
2024-08-09 12:30:07
(1 year ago)
52.237.251.117 [redacted].[redacted] (8075-MICROSOFT-CORP-MSN-AS-BLOCK Australia Sydney) - - [09/Aug ...
show more
52.237.251.117 [redacted].[redacted] (8075-MICROSOFT-CORP-MSN-AS-BLOCK Australia Sydney) - - [09/Aug/2024:14:30:04 +0200] "GET //wp-content/plugins/classic-editor/wp-login.php HTTP/1.1" 404 118 "-" "Go-
...
show less
Bad Web Bot
Web App Attack
Anonymous
2024-08-09 11:40:56
(1 year ago)
52.237.251.117 - - [09/Aug/2024:13:40:52 +0200] "GET //wp-content/plugins/classic-editor/wp-login.ph ...
show more
52.237.251.117 - - [09/Aug/2024:13:40:52 +0200] "GET //wp-content/plugins/classic-editor/wp-login.php HTTP/1.1" 404 446 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:13:40:53 +0200] "GET //.tmb/wp-login.php HTTP/1.1" 404 446 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:13:40:53 +0200] "GET //.well-known/acme-challenge/wp-login.php HTTP/1.1" 200 2911 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:13:40:53 +0200] "GET //.well-known/pki-validation/wp-login.php HTTP/1.1" 200 2911 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:13:40:54 +0200] "GET //cgi-bin/wp-login.php HTTP/1.1" 404 446 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:13:40:55 +0200] "GET //images/wp-login.php HTTP/1.1" 404 446 "-" "Go-http-client/1.1"
52.237.251.117 - - [09/Aug/2024:13:40:55 +0200] "GET //wp-admin/css/wp-login.php HTTP/1.1" 404 446 "-" "Go-http-client/1.1"
...
show less
Brute-Force
π²πΎ
Rizzy
2024-08-09 10:17:53
(1 year ago)
Multiple WAF Violations
Brute-Force
Web App Attack
Anonymous
2024-08-09 07:56:37
(1 year ago)
wordpress-trap
Web App Attack
πΊπΈ
gu-alvareza
2024-08-09 07:05:21
(1 year ago)
PHP.URI.Code.Injection
SQL Injection
Web App Attack