ATV
2024-11-14 03:07:15
(3 weeks ago)
Unsolicited connection attempts to ports 443, 80
Hacking
JPPO
2024-11-13 22:32:57
(3 weeks ago)
76 hits : Use many different user agents ... to be blocked
Hacking
Web App Attack
Anonymous
2024-11-13 17:03:06
(3 weeks ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
noxtec GmbH
2024-11-13 15:22:07
(3 weeks ago)
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 18.222.42.111 (US/Un ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 18.222.42.111 (US/United States/ec2-18-222-42-111.us-east-2.compute.amazonaws.com) show less
Bad Web Bot
spyra.rocks
2024-11-13 15:03:13
(3 weeks ago)
ModSecurity
Web App Attack
Carsten
2024-11-13 14:25:43
(3 weeks ago)
port scan with outdated browser [firefox/35.]
Port Scan
blinx
2024-11-13 13:57:10
(3 weeks ago)
Suspicious activity detected by Modsecurity
Web Spam
Port Scan
Hacking
Bad Web Bot
Web App Attack
paulshipley.com.au
2024-11-13 13:15:34
(3 weeks ago)
ccideas.com.au:443 18.222.42.111 - - [14/Nov/2024:00:13:54 +1100] "GET /particles.min.js HTTP/1.1" 4 ... show more ccideas.com.au:443 18.222.42.111 - - [14/Nov/2024:00:13:54 +1100] "GET /particles.min.js HTTP/1.1" 404 83562 "-" "Mozilla/5.0 (X11; Linux i686; rv:10.0.1) Gecko/20100101 Firefox/10.0.1 SeaMonkey/2.7.1"
ccideas.com.au:443 18.222.42.111 - - [14/Nov/2024:00:13:54 +1100] "GET /wp-emoji-release.min.js HTTP/1.1" 404 83576 "-" "Mozilla/5.0 (Windows NT 5.1; rv:38.0) Gecko/20100101 Firefox/38.0 SeaMonkey/2.35"
ccideas.com.au:443 18.222.42.111 - - [14/Nov/2024:00:13:54 +1100] "GET /uael-particles.min.js HTTP/1.1" 404 83572 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:47.0) Gecko/20100101 Firefox/47.0"
ccideas.com.au:443 18.222.42.111 - - [14/Nov/2024:00:13:54 +1100] "GET /default.js HTTP/1.1" 404 83550 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en-US) AppleWebKit/528.16 (KHTML, like Gecko, Safari/528.16) OmniWeb/v622.8.0.112941"
ccideas.com.au:443 18.222.42.111 - - [14/Nov/2024:00:14:42 +1100] "GET /default.js HTTP/1.1" 404 83550 "-" "Mozilla/5.0 (Windows NT 6.2; rv:19.0) Gecko/2012
... show less
Web App Attack
Rip
2024-11-13 13:04:42
(3 weeks ago)
Client is generating excessive 404 errors by scraping for users, files and folders.
...
Web App Attack
VHosting
2024-11-13 12:24:29
(3 weeks ago)
Attempt from 18.222.42.111, reason: OverConnLimit
DDoS Attack
Bad Web Bot
thedreamer.nl
2024-11-13 11:50:08
(3 weeks ago)
18.222.42.111 - - [13/Nov/2024:12:49:16 +0100] "GET /b9ef57aa1adf03a059ad/unhomoglyph_data.js HTTP/1 ... show more 18.222.42.111 - - [13/Nov/2024:12:49:16 +0100] "GET /b9ef57aa1adf03a059ad/unhomoglyph_data.js HTTP/1.1" 404 125 "-" "Mozilla/5.0 (X11; Linux i686; rv:49.0) Gecko/20100101 Firefox/49.0 SeaMonkey/2.46" "US" "Columbus" "39.96250" "-83.00610"
18.222.42.111 - - [13/Nov/2024:12:49:16 +0100] "GET /b9ef57aa1adf03a059ad/bundle.js HTTP/1.1" 404 125 "-" "BlackBerry9700/5.0.0.351 Profile/MIDP-2.1 Configuration/CLDC-1.1 VendorID/123" "US" "Columbus" "39.96250" "-83.00610"
18.222.42.111 - - [13/Nov/2024:12:50:04 +0100] "GET /b9ef57aa1adf03a059ad/unhomoglyph_data.js HTTP/1.1" 404 188 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) obsidian/0.14.6 Chrome/100.0.4896.75 Electron/18.0.4 Safari/537.36" "US" "Columbus" "39.96250" "-83.00610"
18.222.42.111 - - [13/Nov/2024:12:50:07 +0100] "GET /b9ef57aa1adf03a059ad/bundle.js HTTP/1.1" 404 125 "-" "Mozilla/5.0 (iPod touch; CPU iPhone OS 7_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML like Gecko) Version/7.0 Mobile/11D167 Safari/123
... show less
Brute-Force
Bad Web Bot
FeG Deutschland
2024-11-13 11:31:01
(3 weeks ago)
Looking for CMS/PHP/SQL vulnerablilities - 13
Exploited Host
Web App Attack
Anonymous
2024-11-13 11:19:17
(3 weeks ago)
Malicious activity detected
Hacking
Web App Attack
OuverneY
2024-11-13 11:00:38
(3 weeks ago)
FW-PortScan: Traffic Blocked (Port=443 <- 67 attempts), (Port=80 <- 1 attempts), Total connections: ... show more FW-PortScan: Traffic Blocked (Port=443 <- 67 attempts), (Port=80 <- 1 attempts), Total connections: 136, Total destination IPs: 2 show less
Port Scan
LRob.fr
2024-11-12 23:04:14
(3 weeks ago)
Bad web bot activity detected by Fail2Ban in plesk-apache-badbot jail
Bad Web Bot