Advertisement
Guest User

Untitled

a guest
Aug 23rd, 2014
293
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.20 KB | None | 0 0
  1. --48d9096c-A--
  2. [23/Aug/2014:14:27:18 --0400] Go6GSUWntUYAAEPaTlIAAAEG [attackers-ip] 57504 [target-server-ip] 80
  3. --48d9096c-B--
  4. POST /xmlrpc.php HTTP/1.1
  5. Content-Length: 215
  6. Host: [attackerstargetdomain.com]
  7. X-Forwarded-For: [attackers-ip]
  8. X-Varnish: 1715115807
  9.  
  10. --48d9096c-C--
  11. <?xml version="1.0" encoding="iso-8859-1"?>
  12. <methodCall>
  13. <methodName>wp.getUsersBlogs</methodName>
  14. <params>
  15. <param><value>test</value></param>
  16. <param><value>sydney</value></param>
  17. </params>
  18. </methodCall>
  19. --48d9096c-F--
  20. HTTP/1.1 404 Not Found
  21. X-Powered-By: PHP/5.3.22
  22. Expires: Wed, 11 Jan 1984 05:00:00 GMT
  23. Cache-Control: no-cache, must-revalidate, max-age=0
  24. Pragma: no-cache
  25. Vary: Accept-Encoding
  26. Connection: close
  27. Content-Type: text/html; charset=UTF-8
  28.  
  29. --48d9096c-H--
  30. Message: Access denied with code 411 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/usr/local/apache/conf/modsec2.user.conf"] [line "877"] [id "5000228"] [msg "xmlrpc DoS attempt"]
  31. Action: Intercepted (phase 2)
  32. Stopwatch: 1408818438112841 626398 (1127* 1964 -)
  33. Producer: ModSecurity for Apache/2.5.13 (http://www.modsecurity.org/).
  34. Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5
  35.  
  36. --48d9096c-Z--
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement