TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 28 01:35:43.522229 2024] [security2:error] [pid 31177:tid 31177] [client 112.193.215.32:48904] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.post35.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.post35.com"] [uri "/2017.sql"] [unique_id "ZveVrz-MLlBAibwDA1Xk3QAAAAE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 27 07:27:13.824956 2024] [security2:error] [pid 3865:tid 3977] [client 112.193.215.32:48032] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.idealcentralvac.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.idealcentralvac.com"] [uri "/mysql.sql"] [unique_id "ZvaWkQ6v6RV1YGBbemKfigAAAJI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 27 01:25:25.723356 2024] [security2:error] [pid 26057:tid 26057] [client 112.193.215.32:48353] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.customhumanrobots.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.customhumanrobots.com"] [uri "/mysql.bak"] [unique_id "ZvZBxS-VsV1A1MoTYmw43QAAABU"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 17 09:41:07.513552 2024] [security2:error] [pid 31442:tid 31442] [client 112.193.215.32:13313] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.usaenquirer.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.usaenquirer.com"] [uri "/com.bak"] [unique_id "ZumG85ehcMPO0ebqk_KzRgAAABk"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 17 08:51:26.633477 2024] [security2:error] [pid 26967:tid 26967] [client 112.193.215.32:13671] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.gescosigns.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.gescosigns.com"] [uri "/2021.sql"] [unique_id "Zul7TltRLoSDD431E70UBwAAAAo"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 15 20:54:15.644866 2024] [security2:error] [pid 13831:tid 13831] [client 112.193.215.32:13848] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.catholicshopper.com|F|2"] [data ".0.0.1.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.catholicshopper.com"] [uri "/127.0.0.1.bak"] [unique_id "ZueBt7HzIYuePLomoC--KwAAABM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 12 20:00:57.584198 2024] [security2:error] [pid 22257:tid 22257] [client 112.193.215.32:12419] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.obfetal.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.obfetal.com"] [uri "/local.sql"] [unique_id "ZuOAuQj-xVTieps_Ycj00AAAACk"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 12 05:40:45.915841 2024] [security2:error] [pid 351:tid 351] [client 112.193.215.32:12295] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.donutlocations.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.donutlocations.com"] [uri "/forum.bak"] [unique_id "ZuK3HUwdLWtdxq8u2xPUMwAAAA4"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 12 01:19:32.216409 2024] [security2:error] [pid 16410:tid 16410] [client 112.193.215.32:60242] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.chafinlaw.net|F|2"] [data ".net.sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.chafinlaw.net"] [uri "/chafinlaw.net.sql"] [unique_id "ZuJ55J221UeHtPx-i_w9EQAAACU"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 11 19:28:26.803461 2024] [security2:error] [pid 3868632:tid 3868632] [client 112.193.215.32:13916] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.stkm.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.stkm.com"] [uri "/2016.sql"] [unique_id "ZuInmqvON_qHE6ai0koDWQAAADM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 11 13:02:26.203972 2024] [security2:error] [pid 30436:tid 1581] [client 112.193.215.32:60729] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.aspencommission.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.aspencommission.com"] [uri "/www.bak"] [unique_id "ZuHNIpmOUk6BFwdyS1ytPgAAAVI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 10 09:51:53.997463 2024] [security2:error] [pid 28465:tid 28465] [client 112.193.215.32:59874] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.robertprowse.net|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.robertprowse.net"] [uri "/tar.bak"] [unique_id "ZuBO-XLefngmOUeCu32K3gAAABo"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 09 21:24:58.681576 2024] [security2:error] [pid 12832:tid 12832] [client 112.193.215.32:59431] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.twobytwotutoring.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.twobytwotutoring.org"] [uri "/asp.sql"] [unique_id "Zt-f6gQ5akMDU2FGZeLWQwAAABE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 112.193.215.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 08 08:44:25.355739 2024] [security2:error] [pid 14145:tid 14145] [client 112.193.215.32:59902] [client 112.193.215.32] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.trailofcrumbs.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.trailofcrumbs.com"] [uri "/2024.bak"] [unique_id "Zt2cKcn1o0c1j6LYw2c1YAAAAAg"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Anonymous
|
|
alibaba cloud ddos like web scan
|
Bad Web Bot
|
|