polycoda
2024-09-15 10:49:38
(1 day ago)
📂 Probes for tons of inexistent directory listings
Hacking
Web App Attack
Anonymous
2024-09-12 11:22:00
(4 days ago)
Web App Attack
Bad Web Bot
Web App Attack
Anonymous
2024-09-07 10:17:02
(1 week ago)
Remote Code Execution Attempt
Hacking
Brute-Force
Web App Attack
Anonymous
2024-09-07 10:01:09
(1 week ago)
Excessive crawling/scraping
Hacking
Brute-Force
TPI-Abuse
2024-09-06 12:56:03
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 199.47.82.21 (crawler.turnitin.com): 1 in the l ... show more (mod_security) mod_security (id:210730) triggered by 199.47.82.21 (crawler.turnitin.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 06 08:55:59.408788 2024] [security2:error] [pid 24414:tid 24414] [client 199.47.82.21:39434] [client 199.47.82.21] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.bodybuildbid.com|F|2"] [data ".wnso.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.bodybuildbid.com"] [uri "/articles/muscle_building/www.WNSO.com"] [unique_id "Ztr7375YMKucMcjf4_a-VAAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
conseilgouz
2024-08-31 02:02:14
(2 weeks ago)
cow-Joomla User : try to access forms...
Hacking
MAGIC
2024-08-29 18:01:16
(2 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
TPI-Abuse
2024-08-29 10:42:05
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 199.47.82.21 (crawler.turnitin.com): 1 in the l ... show more (mod_security) mod_security (id:210730) triggered by 199.47.82.21 (crawler.turnitin.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 29 06:41:58.560796 2024] [security2:error] [pid 3342524:tid 3342524] [client 199.47.82.21:48765] [client 199.47.82.21] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||bahamascruisersguide.com|F|2"] [data ".blogspot.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bahamascruisersguide.com"] [uri "/Blogs-Websites/snowbirdscompassrose.blogspot.com"] [unique_id "ZtBQdrSAZCYSt3ULST5Z5AAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
bigorre.org
2024-08-29 04:38:04
(2 weeks ago)
unidentified crawl, no bot reference in user agent
Bad Web Bot
bigorre.org
2024-08-19 01:29:37
(4 weeks ago)
unidentified crawl, no bot reference in user agent
Bad Web Bot
Anonymous
2024-08-19 00:09:19
(4 weeks ago)
Excessive crawling/scraping
Hacking
Brute-Force
mwgbr
2024-08-18 11:12:30
(4 weeks ago)
199.47.82.21 (US/United States/crawler.turnitin.com), more than 10 Apache 403 hits in the last 3600 ... show more 199.47.82.21 (US/United States/crawler.turnitin.com), more than 10 Apache 403 hits in the last 3600 secs; Ports: 80,443,7080,7081; Direction: in; Trigger: LF_APACHE_403; Logs: show less
Port Scan
mnsf
2024-08-16 15:01:29
(1 month ago)
Too many Status 40X (16)
Brute-Force
Web App Attack
SCHAPPY
2024-08-14 13:57:27
(1 month ago)
Bad bot identified by user agent
Bad Web Bot
TPI-Abuse
2024-08-14 06:37:46
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 199.47.82.21 (crawler.turnitin.com): 1 in the l ... show more (mod_security) mod_security (id:210730) triggered by 199.47.82.21 (crawler.turnitin.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 14 02:37:40.421352 2024] [security2:error] [pid 3345:tid 3345] [client 199.47.82.21:47918] [client 199.47.82.21] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.andrejblatnik.com|F|2"] [data ".cekape.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.andrejblatnik.com"] [uri "/www.cekape.com"] [unique_id "ZrxQtPhLHzMb2WVJwhPFIAAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack