TPI-Abuse
2024-12-03 01:45:56
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.comp ... show more (mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 20:45:51.945826 2024] [security2:error] [pid 1531:tid 1531] [client 13.37.215.162:45012] [client 13.37.215.162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.memoriesin.thinksite.net"] [uri "/.git/"] [unique_id "Z05izz9QdN6TXBM-2TjkVQAAAA4"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-03 01:20:46
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.comp ... show more (mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 20:20:43.079764 2024] [security2:error] [pid 30663:tid 30663] [client 13.37.215.162:44876] [client 13.37.215.162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "midnight-tech.com"] [uri "/.git/"] [unique_id "Z05c6yaf34sdwHbocCk7SQAAAA4"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-12-03 01:11:02
(1 month ago)
Malicious activity detected
Hacking
Web App Attack
MAGIC
2024-12-03 01:01:06
(1 month ago)
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Anonymous
2024-12-03 00:49:35
(1 month ago)
Restricted File Access Requests
Hacking
Brute-Force
Burayot
2024-12-03 00:08:28
(1 month ago)
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 13.37.215.162 (FR/France/ec2-13-37-2 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 13.37.215.162 (FR/France/ec2-13-37-215-162.eu-west-3.compute.amazonaws.com): 1 in the last 3600 secs show less
Web App Attack
TPI-Abuse
2024-12-03 00:08:07
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.comp ... show more (mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 19:08:01.741910 2024] [security2:error] [pid 10911:tid 10911] [client 13.37.215.162:36678] [client 13.37.215.162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.michaelgardner.com"] [uri "/.git/"] [unique_id "Z05L4byqvnKx1nNzReSbBQAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-12-03 00:05:11
(1 month ago)
Probing to gain illegal access
Web App Attack
MSZ
2024-12-03 00:00:20
(1 month ago)
Blocked by Fail2Ban (plesk-modsecurity)
Hacking
Brute-Force
Web App Attack
TPI-Abuse
2024-12-02 23:39:23
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.comp ... show more (mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 18:39:17.760678 2024] [security2:error] [pid 5544:tid 5544] [client 13.37.215.162:52406] [client 13.37.215.162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.vankesselporsche.com"] [uri "/.git/"] [unique_id "Z05FJWUzyKxUyKVL91cijAAAAAo"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-12-02 23:37:34
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_MODSEC
Brute-Force
SSH
FeG Deutschland
2024-12-02 23:25:32
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities - 13
Exploited Host
Web App Attack
w-e-c-l-o-u-d-i-t
2024-12-02 23:22:47
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 13.37.215.162 (US/United States/ec2-13-37-215-1 ... show more (mod_security) mod_security (id:210492) triggered by 13.37.215.162 (US/United States/ec2-13-37-215-162.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 0; Trigger: LF_MODSEC show less
Brute-Force
SSH
TPI-Abuse
2024-12-02 23:18:01
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.comp ... show more (mod_security) mod_security (id:210492) triggered by 13.37.215.162 (ec2-13-37-215-162.eu-west-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 18:17:55.024445 2024] [security2:error] [pid 29802:tid 29802] [client 13.37.215.162:47210] [client 13.37.215.162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.desertvacationvillas.com"] [uri "/.git/"] [unique_id "Z05AI8wY1yU__5q8KxM4iAAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
Ba-Yu
2024-12-02 23:05:36
(1 month ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack