๐บ๐ธ
TPI-Abuse
2024-07-26 04:35:23
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 26 00:35:11.187657 2024] [security2:error] [pid 20899:tid 20899] [client 2a00:1b88:4::4:34704] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.sipkg.com"] [uri "/.git/config"] [unique_id "ZqMnf8-fVZ6wKd2QCTPvfwAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-25 02:04:42
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 24 22:04:34.512999 2024] [security2:error] [pid 10074:tid 10074] [client 2a00:1b88:4::4:37350] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.mendenhallinsurance.com"] [uri "/.git/config"] [unique_id "ZqGystul-mhQ0vDYnE0MkQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-22 22:25:49
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 22 18:25:42.279495 2024] [security2:error] [pid 1393401:tid 1393401] [client 2a00:1b88:4::4:49428] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgegourmet.com"] [uri "/wp-config.php~~~~"] [unique_id "Zp7cZj3WGwO-SN6vBk5IuQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-22 20:45:52
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 22 16:45:47.652712 2024] [security2:error] [pid 23595:tid 23595] [client 2a00:1b88:4::4:54304] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.swim6.com"] [uri "/.git/config"] [unique_id "Zp7E-1w16-icvkVDyaOkCQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-22 17:23:12
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 22 13:23:07.787139 2024] [security2:error] [pid 25123:tid 25123] [client 2a00:1b88:4::4:60530] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.thrudheim.org"] [uri "/.git/config"] [unique_id "Zp6Ve3jHeXSMC8TSUtAB-QAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-22 16:57:12
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 22 12:57:06.493329 2024] [security2:error] [pid 11150:tid 11150] [client 2a00:1b88:4::4:50360] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.tradesecretintrust.com"] [uri "/.git/config"] [unique_id "Zp6PYkbMytD28T2yIkPSYAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-22 16:16:10
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 22 12:16:05.783360 2024] [security2:error] [pid 25422:tid 25422] [client 2a00:1b88:4::4:58528] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.jordanware.com"] [uri "/.git/config"] [unique_id "Zp6FxdfAcRiCcf48lyoD-gAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-22 15:54:20
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210492) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 22 11:54:14.073218 2024] [security2:error] [pid 17936:tid 17936] [client 2a00:1b88:4::4:35554] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.kwijlen.com"] [uri "/.git/config"] [unique_id "Zp6ApofbpRiarQDKhk87DAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-18 18:22:07
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 18 14:22:02.586761 2024] [security2:error] [pid 25798:tid 25798] [client 2a00:1b88:4::4:54146] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||wildgrainsbakery.biz|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "wildgrainsbakery.biz"] [uri "/backups.sql"] [unique_id "ZpldSmyGQW_cmZlFvIhTugAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Linuxmalwarehuntingnl
2024-07-04 23:03:22
(2 years ago)
Honeypot HIT
Brute-Force
๐บ๐ธ
TPI-Abuse
2024-07-01 22:49:03
(2 years ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 01 18:48:57.778748 2024] [security2:error] [pid 16699:tid 47826746742528] [client 2a00:1b88:4::4:38760] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||pcfinancial.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pcfinancial.com"] [uri "/p.sql"] [unique_id "ZoMyWcedAB3BLVIe9TUJ4gAAANA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Linuxmalwarehuntingnl
2024-06-28 22:51:54
(2 years ago)
Honeypot HIT
Brute-Force
๐ฉ๐ช
Reinhard
2024-06-20 16:34:00
(2 years ago)
[20/Jun/2024:18:34:28 +0200] Collecting information for hacking.
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-06-16 11:15:20
(2 years ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 16 07:15:16.704505 2024] [security2:error] [pid 30136] [client 2a00:1b88:4::4:44640] [client 2a00:1b88:4::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||instafaces.xyz|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "instafaces.xyz"] [uri "/i.sql"] [unique_id "Zm7JRHLtMBlBjS_7bbUrVAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
maxxsense
2024-06-11 18:06:57
(2 years ago)
*Port Scan* detected from 2a00:1b88:4::4 (FR/France/-).
Port Scan