π¦πΊ
MAGIC
2024-03-07 08:05:47
(2 years ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
π§πͺ
taivas.nl
2024-02-26 05:32:43
(2 years ago)
Many_bad_calls
Web App Attack
πΊπΈ
TPI-Abuse
2024-02-26 03:16:55
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 25 22:16:50.162921 2024] [security2:error] [pid 15619:tid 47022625625856] [client 146.70.190.147:62519] [client 146.70.190.147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.alancphotography.com"] [uri "/wp-content/themes/portfolio-gallery/down.php"] [unique_id "ZdwCoiBI9Thjwg7LIiAQxwAAAIQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
nextweb
2024-02-26 00:24:37
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (BE/Belgium/Brussels Capital/Bru ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (BE/Belgium/Brussels Capital/Brussels/-/[AS9009 M247 Europe SRL]): 5 in the last 3600 secs (CF_ENABLE)
show less
Brute-Force
πΊπΈ
TPI-Abuse
2024-02-25 22:04:42
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 25 17:04:37.185323 2024] [security2:error] [pid 16413] [client 146.70.190.147:53515] [client 146.70.190.147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "akistech.com"] [uri "/wp-content/themes/eteon/down.php"] [unique_id "Zdu5ddRkSAQ0WPwnWK3mXAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πͺ
taivas.nl
2024-02-25 21:02:14
(2 years ago)
Bad_requests
Bad Web Bot
πΊπΈ
mnsf
2024-02-25 17:01:05
(2 years ago)
Too many Status 40X (16)
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2024-02-25 14:35:04
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 25 09:34:59.673707 2024] [security2:error] [pid 9769] [client 146.70.190.147:18421] [client 146.70.190.147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aisoftwaretools.com"] [uri "/wp-content/themes/twentyseventeen/down.php"] [unique_id "ZdtQE-wXtHr3IS7rNzYQTgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2024-02-25 13:42:01
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 25 08:41:55.461916 2024] [security2:error] [pid 13627] [client 146.70.190.147:14683] [client 146.70.190.147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.airtechconsulting.com"] [uri "/wp-content/themes/dt-the7/down.php"] [unique_id "ZdtDo99RPtS20D1omW5j7AAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
MAGIC
2024-02-25 12:00:18
(2 years ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
πΊπΈ
TPI-Abuse
2024-02-25 11:36:24
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 25 06:36:17.507289 2024] [security2:error] [pid 21101] [client 146.70.190.147:62743] [client 146.70.190.147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.airdriedrivingschool.com"] [uri "/wp-content/themes/twentytwentytwo/down.php"] [unique_id "ZdsmMc15tv5v_Wxu5vV4KwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2024-02-25 09:03:49
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 25 04:03:42.577803 2024] [security2:error] [pid 11140:tid 47914345572096] [client 146.70.190.147:16115] [client 146.70.190.147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ainavelas.com"] [uri "/wp-content/themes/flatsome/down.php"] [unique_id "ZdsCbvHaUTxvMt4Y5-9bDwAAAIA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2024-02-25 08:19:46
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.190.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 25 03:19:39.066013 2024] [security2:error] [pid 8524] [client 146.70.190.147:17017] [client 146.70.190.147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aimer.es"] [uri "/wordpress/wp-content/themes/aimernestor/down.php"] [unique_id "Zdr4G-A_gOn32oGLsa8ougAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2024-02-24 15:58:02
(2 years ago)
Bot / scanning and/or hacking attempts: GET /wp-config.php~ HTTP/1.1, GET /wp-config.old HTTP/1.1, G ...
show more
Bot / scanning and/or hacking attempts: GET /wp-config.php~ HTTP/1.1, GET /wp-config.old HTTP/1.1, GET /wp-config.php_bak HTTP/1.1, GET /wp-config.php_old HTTP/1.1, GET /wp-config.php.old HTTP/1.1, GET /wp-content/themes/astra/download.php?download=..%2F..%2F.., GET /wp-admin/admin-ajax.php?action=revslider_show_image&img=..
show less
Hacking
Web App Attack
π§π·
hostseries
2024-02-24 14:56:48
(2 years ago)
Trigger: LF_MODSEC
Brute-Force