FeG Deutschland
|
|
Looking for CMS/PHP/SQL vulnerablilities - 13
|
Exploited Host
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillase ... show more(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillaservers.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 13:43:19.982444 2024] [security2:error] [pid 1275687:tid 1275687] [client 23.239.108.254:38418] [client 23.239.108.254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nextlevelcharge.com"] [uri "/.git/config"] [unique_id "Z1ndR09WXDNo8tKnagDKiAAAAAw"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillase ... show more(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillaservers.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 13:17:36.255065 2024] [security2:error] [pid 20954:tid 20995] [client 23.239.108.254:55456] [client 23.239.108.254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "killasgarage.bike"] [uri "/.git/config"] [unique_id "Z1nXQNpWA_hSt3s1NaL_YAAAAFg"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
MAGIC
|
|
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillase ... show more(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillaservers.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 12:57:45.248607 2024] [security2:error] [pid 5001:tid 5001] [client 23.239.108.254:39964] [client 23.239.108.254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "angove.biz"] [uri "/.git/config"] [unique_id "Z1nSmZonQvvDKHK_VRSXZwAAAAw"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Valhalla
|
|
Suspicious Activity Detected: /.git/config
|
Hacking
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillase ... show more(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillaservers.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 12:36:17.019933 2024] [security2:error] [pid 30731:tid 30731] [client 23.239.108.254:37552] [client 23.239.108.254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "landex.auction"] [uri "/.git/config"] [unique_id "Z1nNkblkv4YddA3uQUDR9AAAAAA"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Anonymous
|
|
Malicious activity detected
|
Hacking
Web App Attack
|
|
Anonymous
|
|
Restricted File Access Requests
|
Hacking
Brute-Force
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillase ... show more(mod_security) mod_security (id:210492) triggered by 23.239.108.254 (23.239.108.254.static.gorillaservers.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 12:02:21.702566 2024] [security2:error] [pid 16640:tid 16640] [client 23.239.108.254:35932] [client 23.239.108.254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "comsew.com.au"] [uri "/.git/config"] [unique_id "Z1nFnVs20QmRj9UQXHabFQAAAAA"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
iNetWorker
|
|
trolling for resource vulnerabilities
|
Web App Attack
|
|
afleventoffice.com.au
|
|
GET /.git/config HTTP/1.1
|
Web App Attack
|
|