๐ฑ๐ป
garmtech.com
2025-11-20 22:59:52
(7 months ago)
IM360 WAF: Attempt to upload malware
Hacking
๐ฑ๐ป
garmtech.com
2025-10-29 11:22:42
(7 months ago)
IM360 WAF: Attempt to upload malware
Hacking
๐ฉ๐ช
Packets-Decreaser.NET
2025-09-24 11:16:14
(9 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐บ๐ธ
TPI-Abuse
2025-09-06 22:24:37
(9 months ago)
(mod_security) mod_security (id:210730) triggered by 193.233.211.194 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 193.233.211.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 06 18:24:30.567029 2025] [security2:error] [pid 28557:tid 28557] [client 193.233.211.194:63941] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Hudson II/Hudson II/Vermont Bark/Loveseat/originals/Thumbs.db"] [unique_id "aLy0nlLBr5x9xRZ3eKxswgAAAAY"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Hudson%20II/Hudson%20II/Vermont%20Bark/Loveseat/originals/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2025-06-19 20:05:05
(1 year ago)
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-05-06 05:28:30
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 193.233.211.194 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 193.233.211.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 01:28:26.237095 2025] [security2:error] [pid 626796:tid 626796] [client 193.233.211.194:15521] [client 193.233.211.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Briarwood II/Briarwood II/Stetson Bordeaux/originals/Thumbs.db"] [unique_id "aBmd-pI4H3B4OwW0L2BFTwAAABc"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Briarwood%20II/Briarwood%20II/Stetson%20Bordeaux/originals/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-03-05 10:07:06
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 193.233.211.194 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 193.233.211.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 05 05:06:57.615802 2025] [security2:error] [pid 44049:tid 44049] [client 193.233.211.194:34149] [client 193.233.211.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Himolla-ZeroStress-Recliner/Images/Chester/Thumbs.db"] [unique_id "Z8giQae3JqEMHuzjm2LADgAAAAA"], referer: https://vitalitywebb.com/backstore/Himolla-ZeroStress-Recliner/Images/Chester/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2024-11-07 21:02:33
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2024-11-02 14:30:07
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 193.233.211.194 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 193.233.211.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 02 10:29:59.008568 2024] [security2:error] [pid 1254444:tid 1254444] [client 193.233.211.194:47877] [client 193.233.211.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Chandler/Thumbs.db"] [unique_id "ZyY3ZwW59TcdSCixz38Z6QAAAAc"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Chandler/
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-10-05 07:47:44
(1 year ago)
This IP was involved in an brute force and password spray attack on 2024/10/05 02:43:07
Port Scan
Brute-Force
Exploited Host
Web App Attack
๐ท๐บ
sms.ru
2024-09-24 23:15:06
(1 year ago)
SMS pumping attack from foreign country
DDoS Attack
๐ต๐ฑ
sefinek.net
2024-08-29 23:26:23
(1 year ago)
This IP address has been identified as generating artificial traffic on websites following the purch ...
show more
This IP address has been identified as generating artificial traffic on websites following the purchase of a specific service from a Fiverr gig. User-Agent and Referrer: Mozilla/5.0 (iPad; CPU OS 15_7_5 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/117.0.5938.35 Mobile/15E148 Safari/604.1 - en-US - -
show less
Bad Web Bot
Anonymous
2024-05-29 12:34:15
(2 years ago)
Log aggregation/SIEM detected brute force attack
Brute-Force
Exploited Host
๐จ๐ญ
backslash
2024-05-15 18:35:03
(2 years ago)
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
Bad Web Bot
Anonymous
2024-04-14 22:20:36
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH