strzonnek
|
|
attack on webform
|
Brute-Force
Web App Attack
|
|
strzonnek
|
|
attack on webform
|
Brute-Force
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 2.58.56.90 (tor-exit-node.powered.by.rdp.sh): 1 ... show more(mod_security) mod_security (id:210492) triggered by 2.58.56.90 (tor-exit-node.powered.by.rdp.sh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 17 03:03:00.292805 2024] [security2:error] [pid 32267:tid 32337] [client 2.58.56.90:53016] [client 2.58.56.90] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ceol.com"] [uri "/wp-config.bak"] [unique_id "ZzmjNCW7k77041ikUNKWvgAAABM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
strzonnek
|
|
attack on webform
|
Brute-Force
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 2.58.56.90 (tor-exit-node.powered.by.rdp.sh): 1 ... show more(mod_security) mod_security (id:210492) triggered by 2.58.56.90 (tor-exit-node.powered.by.rdp.sh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 15 00:57:29.265212 2024] [security2:error] [pid 29584:tid 29584] [client 2.58.56.90:39234] [client 2.58.56.90] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carmensaundersrussell.com"] [uri "/.git/config"] [unique_id "ZzbiyTA4iXPGtqAMmeuzfAAAAAg"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
strzonnek
|
|
attack on webform
|
Brute-Force
Web App Attack
|
|
strzonnek
|
|
attack on webform
|
Brute-Force
Web App Attack
|
|
JuicyJ
|
|
Excessive crawling/scraping
|
Web App Attack
|
|
strzonnek
|
|
attack on webform
|
Brute-Force
Web App Attack
|
|
lyratris.com
|
|
Layer 7 HTTP Flood
|
DDoS Attack
|
|
strzonnek
|
|
attack on webform
|
Brute-Force
Web App Attack
|
|
oncord
|
|
Form spam
|
Web Spam
|
|
Stefan Kostovski
|
|
Detected 2 unauthorized access attempts from IP 2.58.56.90 located in France.
|
DDoS Attack
Brute-Force
|
|
strzonnek
|
|
attack on webform
|
Brute-Force
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 2.58.56.90 (tor-exit-node.powered.by.rdp.sh): 1 ... show more(mod_security) mod_security (id:210730) triggered by 2.58.56.90 (tor-exit-node.powered.by.rdp.sh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 08 16:04:39.253285 2024] [security2:error] [pid 1735974:tid 1735974] [client 2.58.56.90:41558] [client 2.58.56.90] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||forwardti.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "forwardti.com"] [uri "/orwardti.sql"] [unique_id "Zy585zCIWwnVjb1MTGKYhwAAAAM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|