Trustwave

Forum Moderators: open

Message Too Old, No Replies

Trustwave

wilderness

12:09 pm on Jul 27, 2014 (gmt 0)

Not sure what interest this org has in widgets?
Grabbed page and two requests for CSS. No other supporting files.

Their solutions and products are fairly wide and vague in description.

204.13.200.8 - - [27/Jul/2014:05:38:09 -0600] "GET /MyFolder/MyPage.html HTTP/1.0" 200 30147 "-" "Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET CLR 1.0.3705; .NET CLR 1.1.4322)"

Pfui

6:44 pm on Jul 27, 2014 (gmt 0)

I don't recall seeing them but that IP's been roaming for at least four years, for nebulous 'security' purposes, apparently. UAs hitting honeypots include:

Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0)
Mozilla/5.0 (compatible; heritrix/1.14.1 +http://www.trustwave.com)
Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET CLR 1.0.3705; .NET CLR 1.1.4322)
MSIE 6.0

Source: [projecthoneypot.org...]

NetRange: 204.13.200.0 - 204.13.203.255
CIDR: 204.13.200.0/22

dstiles

7:25 pm on Jul 27, 2014 (gmt 0)

Trustwave are an SSL certificate provider and general security firm. I assume that, like others such as commodo, they run bots to discover the security status and SSL status of web sites (and who is using their certs for what).

Yes, I also block them.

Trustwave

wilderness

Pfui

dstiles

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week