๐ฆ๐บ
afleventoffice.com.au
2024-11-30 05:20:19
(1 year ago)
GET /admin HTTP/1.1
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-28 10:15:45
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 28 05:15:41.128134 2024] [security2:error] [pid 23684:tid 23684] [client 2a00:1b88:4::4:47458] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.ashincorporated.com"] [uri "/.git/config"] [unique_id "Z0hCzbPY-jMZuOtjkJ0VrgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-20 12:25:50
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 20 07:25:43.819463 2024] [security2:error] [pid 22043:tid 22043] [client 2a00:1b88:4::4:55698] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.zavijava.net"] [uri "/.git/config"] [unique_id "Zz3VRzN4FWuBqpRmQxQkEQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-20 07:32:45
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 20 02:32:35.936217 2024] [security2:error] [pid 4223:tid 4223] [client 2a00:1b88:4::4:52174] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.despojosocial.com"] [uri "/.git/config"] [unique_id "Zz2Qkx_feq8vFlV9VIEZuwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-14 21:32:28
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 14 16:32:23.969182 2024] [security2:error] [pid 1578692:tid 1578692] [client 2a00:1b88:4::4:34426] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.myuscpa.com"] [uri "/.git/config"] [unique_id "ZzZsZ9jtI1n6LDjDPp7l-QAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-10 23:05:29
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 18:05:23.897890 2024] [security2:error] [pid 17574:tid 17574] [client 2a00:1b88:4::4:45598] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lemoulinavent.org"] [uri "/wp-content/themes/mav/download.php"] [unique_id "ZzE8MxSJ9TovzH-hfMuz-AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-10 22:22:09
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 17:22:03.994743 2024] [security2:error] [pid 10595:tid 10595] [client 2a00:1b88:4::4:58872] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||cyberdana.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cyberdana.com"] [uri "/cybe.sql"] [unique_id "ZzEyC-RH429dl7GjLd3YEQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-08 16:28:25
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 08 11:28:16.902077 2024] [security2:error] [pid 463:tid 463] [client 2a00:1b88:4::4:36410] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eileensharaga.com"] [uri "/wp-content/themes/eileen/download.php"] [unique_id "Zy48IGQUKaSK47Zz35O5JQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-04 15:10:03
(1 year ago)
| Multiple common web attacks from same source ip. (multiple servers)
Hacking
SQL Injection
Web App Attack
๐ฆ๐บ
afleventoffice.com.au
2024-10-04 04:20:27
(1 year ago)
GET /admin HTTP/1.1
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-10-02 17:06:59
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 02 13:06:51.259255 2024] [security2:error] [pid 8099:tid 8202] [client 2a00:1b88:4::4:60274] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.adprospb.com"] [uri "/.git/config"] [unique_id "Zv19q3ok-zGNYOP_VrNFfwAAAQk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
sefinek.net
2024-09-24 15:38:19
(1 year ago)
Triggered Cloudflare WAF (securitylevel).
Action taken: MANAGED_CHALLENGE
ASN: 29075 (IELO IELO Main ...
show more
Triggered Cloudflare WAF (securitylevel).
Action taken: MANAGED_CHALLENGE
ASN: 29075 (IELO IELO Main Network) [T1]
Protocol: HTTP/2 (method GET)
Domain: blocklist.sefinek.net
Endpoint: /generated/v1/0.0.0.0/tracking-and-telemetry/frogeye/firstparty-trackers-hosts.txt
Timestamp: 2024-09-24T06:21:19Z
Ray ID: 8c80ac7538a52a7d
Rule ID: badscore
UA: Mozilla/5.0 (Android 12; Mobile; rv:109.0) Gecko/115.0 Firefox/115.0
Report generated by Node-Cloudflare-WAF-AbuseIPDB https://github.com/sefinek24/Node-Cloudflare-WAF-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2024-09-05 04:33:53
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 05 00:33:47.039268 2024] [security2:error] [pid 25859:tid 25859] [client 2a00:1b88:4::4:60332] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.qcyprus.com"] [uri "/.git/config"] [unique_id "Ztk0q0vu0zPEi_3DAPLhSwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Admins@FBN
2024-09-03 02:39:33
(1 year ago)
FW-PortScan: Traffic Blocked srcport=35947 dstport=53
DNS Poisoning
Port Scan
Hacking
๐ฏ๐ต
Kinsei Engineering Inc.
2024-08-29 08:14:28
(1 year ago)
UFW:High-frequency access to non-released ports used by software with known vulnerabilities.
Port Scan