Anonymous
2024-12-08 22:59:20
(5 hours ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
TPI-Abuse
2024-12-06 05:20:56
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 141.101.76.100 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 141.101.76.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 06 00:20:49.129251 2024] [security2:error] [pid 253114:tid 253114] [client 141.101.76.100:56792] [client 141.101.76.100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.ndanetworks.com"] [uri "/.env"] [unique_id "Z1KJsR68OxjodddtetC7BwAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-12-02 11:28:20
(6 days ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-11-30 22:36:30
(1 week ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Study Bitcoin 🤗
2024-11-30 13:24:40
(1 week ago)
2 port probes: 2x tcp/80 (http)
[srv125]
Port Scan
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-29 07:03:48
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 141.101.76.100 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 141.101.76.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 29 02:03:42.349224 2024] [security2:error] [pid 3394:tid 3394] [client 141.101.76.100:57210] [client 141.101.76.100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "akula.365soft.top"] [uri "/.env"] [unique_id "Z0lnTjNj59F2w8Y-jlfBDQAAAAo"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-29 07:01:30
(1 week ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-11-24 20:41:06
(2 weeks ago)
[Sun Nov 24 21:41:05.789220 2024] [authz_core:error] [pid 1972] [client 141.101.76.100:61504] AH0163 ... show more [Sun Nov 24 21:41:05.789220 2024] [authz_core:error] [pid 1972] [client 141.101.76.100:61504] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Nov 24 21:41:05.813542 2024] [authz_core:error] [pid 1972] [client 141.101.76.100:61504] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Nov 24 21:41:05.837228 2024] [authz_core:error] [pid 1972] [client 141.101.76.100:61504] AH01630: client denied by server configuration: /etc/httpd/htdocs
... show less
Web App Attack
TPI-Abuse
2024-11-17 05:30:18
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 141.101.76.100 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 141.101.76.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 17 00:30:11.736682 2024] [security2:error] [pid 12703:tid 12703] [client 141.101.76.100:45166] [client 141.101.76.100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.pmg-lot.com"] [uri "/.git/config"] [unique_id "Zzl_Y-daQn-tEEERlc_xPwAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-07 10:22:22
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
TPI-Abuse
2024-11-03 11:53:43
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 141.101.76.100 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 141.101.76.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 03 06:53:37.452406 2024] [security2:error] [pid 19153:tid 19153] [client 141.101.76.100:20376] [client 141.101.76.100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shivermedia.com"] [uri "/.git/config"] [unique_id "ZydkQWahn3dHNxVIKawTmAAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
BlueWire Hosting
2024-11-02 15:10:47
(1 month ago)
Detected as a bad bot
Bad Web Bot
Anonymous
2024-10-28 12:07:09
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-10-22 00:20:10
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-10-18 07:25:25
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH