micoots
2024-05-20 00:58:39
(6 months ago)
(imapd) Failed IMAP login from 216.73.161.63 (US/United States/-): 1 in the last 3600 secs
Brute-Force
Ba-Yu
2024-04-19 16:04:15
(7 months ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
physke
2024-04-07 16:26:07
(7 months ago)
REQUESTED PAGE: /_well-known/amaxx.php
Web App Attack
Anonymous
2024-04-07 14:32:36
(7 months ago)
Backdrop CMS module - malicious activity detected
Bad Web Bot
Web App Attack
myagent.site
2024-04-06 17:08:15
(7 months ago)
Blocking for trying to access an exploit file: /install.php
Hacking
10dencehispahard SL
2024-04-04 17:00:38
(8 months ago)
Unauthorized login attempts [ accesslogs]
Brute-Force
Interceptor_HQ
2024-02-21 19:57:31
(9 months ago)
request_uri: /debug/default/view?panel=config -- automatic report --
Hacking
Brute-Force
LRNP
2024-02-21 16:36:57
(9 months ago)
_:80 216.73.161.63 - - [21/Feb/2024:16:36:56 +0000] "GET /.env HTTP/1.1" 404 118 "-" "Mozilla/5.0 (L ... show more _:80 216.73.161.63 - - [21/Feb/2024:16:36:56 +0000] "GET /.env HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30"
... show less
Bad Web Bot
Web App Attack
TPI-Abuse
2024-02-03 19:02:29
(10 months ago)
(mod_security) mod_security (id:210730) triggered by 216.73.161.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 216.73.161.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 03 14:02:22.085671 2024] [security2:error] [pid 9018] [client 216.73.161.63:4371] [client 216.73.161.63] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||apisarev.com|F|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "apisarev.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Zb6NvgSSscUx1bJgVWFS3QAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-02-03 15:33:30
(10 months ago)
(mod_security) mod_security (id:210730) triggered by 216.73.161.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 216.73.161.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 03 10:33:23.209640 2024] [security2:error] [pid 32038] [client 216.73.161.63:27029] [client 216.73.161.63] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||nwliquidators9.com|F|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nwliquidators9.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Zb5cw2cXVUCbaJdflTuxZQAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
www.Examensfragen.de
2024-02-01 15:03:42
(10 months ago)
Web Spam
Bad Web Bot
Aetherweb Ark
2024-01-24 08:29:59
(10 months ago)
(mod_security) mod_security (id:230011) triggered by 216.73.161.63 (US/United States/-): N in the la ... show more (mod_security) mod_security (id:230011) triggered by 216.73.161.63 (US/United States/-): N in the last X secs show less
Brute-Force
Hirte
2024-01-02 15:55:21
(11 months ago)
ENG: Web Attack GET //shell.php
Web Spam
Hacking
Bad Web Bot
Web App Attack
All2gether
2023-12-28 10:40:46
(11 months ago)
Web App Attack
PlexLads
2023-12-27 19:04:23
(11 months ago)
216.73.161.63 - - [27/Dec/2023:11:04:21 -0800] "GET //themes.php HTTP/1.1" 404 341 "-" "Go-http-clie ... show more 216.73.161.63 - - [27/Dec/2023:11:04:21 -0800] "GET //themes.php HTTP/1.1" 404 341 "-" "Go-http-client/1.1" 216.73.161.63 - - [27/Dec/2023:11:04:21 -0800] "GET //about.php HTTP/1.1" 404 341 "-" "Go-http-client/1.1" 216.73.161.63 - - [27/Dec/2023:11:04:21 -0800] "GET //wp-admin/css/colors/blue/CasperExV1.php HTTP/1.1" 404 341 "-" "Go-http-client/1.1" 216.73.161.63 - - [27/Dec/2023:11:04:22 -0800] "GET //wp-content/index.php HTTP/1.1" 404 341 "-" "Go-http-client/1.1" 216.73.161.63 - - [27/Dec/2023:11:04:22 -0800] "GET //byp.php HTTP/1.1" 404 341 "-" "Go-http-client/1.1" 216.73.161.63 - - [27/Dec/2023:11:04:22 -0800] "GET //edit-comments.php HTTP/1.1" 404 341 "-" "Go-http-client/1.1" show less
Hacking
Web App Attack