Anonymous
|
|
Ports: *; Direction: 0; Trigger: CT_LIMIT
|
Brute-Force
SSH
|
|
Anonymous
|
|
Unauthorized connection attempt detected in the last 24 hours
|
Hacking
|
|
diego
|
|
Events: TCP SYN Discovery or Flooding, Seen 3 times in the last 10800 seconds
|
DDoS Attack
|
|
Anonymous
|
|
Unauthorized connection attempt detected in the last 24 hours
|
Hacking
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 217.9.247.102 (-): 1 in the last 300 secs; Port ... show more(mod_security) mod_security (id:210730) triggered by 217.9.247.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 15 16:47:51.168411 2024] [security2:error] [pid 3540:tid 3540] [client 217.9.247.102:35758] [client 217.9.247.102] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||tibbertonshropshire.org|F|2"] [data ".inc.php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tibbertonshropshire.org"] [uri "/include/lib.inc.php.bak"] [unique_id "ZzfBhy5U9WstJjMx22dOEQAAABw"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
rtbh.com.tr
|
|
list.rtbh.com.tr report: tcp/0
|
Brute-Force
|
|
rtbh.com.tr
|
|
list.rtbh.com.tr report: tcp/0
|
Brute-Force
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 217.9.247.102 (-): 1 in the last 300 secs; Port ... show more(mod_security) mod_security (id:210492) triggered by 217.9.247.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 11 23:09:28.284957 2024] [security2:error] [pid 331579:tid 331579] [client 217.9.247.102:56606] [client 217.9.247.102] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jiveturkeyband.com"] [uri "/wp-config.php"] [unique_id "ZzLU-Aey1WRhTWRkhaKk9gAAABM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
ghostwarriors
|
|
Attempts against non-existent wp-login
|
Brute-Force
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 217.9.247.102 (-): 1 in the last 300 secs; Port ... show more(mod_security) mod_security (id:210730) triggered by 217.9.247.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 11 13:28:18.144555 2024] [security2:error] [pid 3438967:tid 3438967] [client 217.9.247.102:52370] [client 217.9.247.102] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||permaetch.com|F|2"] [data ".inc.php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "permaetch.com"] [uri "/include/lib.inc.php.bak"] [unique_id "ZzJMwrFh74dNuATTmI23agAAABE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Savvii
|
|
20 attempts against mh-misbehave-ban on redirect
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 217.9.247.102 (-): 1 in the last 300 secs; Port ... show more(mod_security) mod_security (id:210730) triggered by 217.9.247.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 02:19:52.009088 2024] [security2:error] [pid 3370175:tid 3370175] [client 217.9.247.102:39476] [client 217.9.247.102] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||milakproductions.com|F|2"] [data ".inc.php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "milakproductions.com"] [uri "/include/lib.inc.php.bak"] [unique_id "ZzBemENDq1xms9mV5E-jIwAAABM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Anonymous
|
|
wordpress-trap
|
Web App Attack
|
|
Anonymous
|
|
wordpress-trap
|
Web App Attack
|
|
Anonymous
|
|
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
|
Brute-Force
SSH
|
|