๐ง๐ช
cmbplf
2024-08-10 07:27:16
(1 year ago)
1.276 requests to */xmlrpc.php
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2024-08-10 04:42:07
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 10 00:42:01.839320 2024] [security2:error] [pid 16395:tid 16395] [client 2a03:e600:100::4:14634] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||serranoscoffee.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "serranoscoffee.com"] [uri "/coffee.sql"] [unique_id "ZrbvmZEZUy5UBmy16ZgneQAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
OiledAmoeba
2024-08-06 20:58:57
(1 year ago)
2a03:e600:100::4 - - [06/Aug/2024:22:58:48 +0200] "www.ruhnke.cloud" "POST //xmlrpc.php HTTP/1.1" 20 ...
show more
2a03:e600:100::4 - - [06/Aug/2024:22:58:48 +0200] "www.ruhnke.cloud" "POST //xmlrpc.php HTTP/1.1" 200 258 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36" "-" 0.687 "-"
2a03:e600:100::4 - - [06/Aug/2024:22:58:53 +0200] "www.ruhnke.cloud" "POST //xmlrpc.php HTTP/1.1" 200 256 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36" "-" 0.862 "-"
2a03:e600:100::4 - - [06/Aug/2024:22:58:54 +0200] "www.ruhnke.cloud" "POST //xmlrpc.php HTTP/1.1" 200 291 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36" "-" 0.619 "-"
2a03:e600:100::4 - - [06/Aug/2024:22:58:55 +0200] "www.ruhnke.cloud" "POST //xmlrpc.php HTTP/1.1" 403 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36" "-" 0.491 "-"
2a03:e600:100::4 - - [06/Aug/2024:22:58:57 +02
...
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2024-08-06 06:16:26
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 02:16:21.134294 2024] [security2:error] [pid 14181:tid 14181] [client 2a03:e600:100::4:63432] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.groz.net"] [uri "/.git/config"] [unique_id "ZrG_tcbj18w4XUl0lhNhsAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-08-05 23:54:33
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 19:54:26.102327 2024] [security2:error] [pid 10030:tid 10030] [client 2a03:e600:100::4:37074] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.telesto.pe"] [uri "/.git/config"] [unique_id "ZrFmMu6BcqKGEvbcF2qNXQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-30 16:54:47
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 12:54:41.202667 2024] [security2:error] [pid 5577:tid 5577] [client 2a03:e600:100::4:32584] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.glentraeger.com"] [uri "/.git/config"] [unique_id "Zqka0QparYr5MZHGsFuPwAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-30 11:55:11
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 07:55:06.286771 2024] [security2:error] [pid 13643:tid 13643] [client 2a03:e600:100::4:28260] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.arsndetx.com"] [uri "/.git/config"] [unique_id "ZqjUmt6KGpFUFFp3FF_ioAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-30 10:10:28
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 06:10:23.702397 2024] [security2:error] [pid 20424:tid 20424] [client 2a03:e600:100::4:43178] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.xpengineering.com"] [uri "/.git/config"] [unique_id "Zqi8D4e3cy1YIoxrIBznDwAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-30 09:53:45
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 05:53:40.387863 2024] [security2:error] [pid 8580:tid 8580] [client 2a03:e600:100::4:13148] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.trigonom.com"] [uri "/.git/config"] [unique_id "Zqi4JBFlsq2GFONKEyf0XQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-30 07:52:29
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 03:52:21.878172 2024] [security2:error] [pid 2652:tid 2771] [client 2a03:e600:100::4:30950] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.munatseng.org"] [uri "/.git/config"] [unique_id "ZqibtWdJaS91ERDBHsMP_wAAAxM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-30 07:09:47
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 03:09:42.563130 2024] [security2:error] [pid 1541555:tid 1541555] [client 2a03:e600:100::4:18590] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.admiralpointe.com"] [uri "/.git/config"] [unique_id "ZqiRtuJJeVjWY8KJNTk13QAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-30 06:14:08
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 02:14:00.197355 2024] [security2:error] [pid 1437:tid 1437] [client 2a03:e600:100::4:11730] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.birdlovers.net"] [uri "/.git/config"] [unique_id "ZqiEqJLAXP4NOF25riH9wgAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-30 05:38:38
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 01:38:32.155151 2024] [security2:error] [pid 25144:tid 25144] [client 2a03:e600:100::4:18066] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.neff.family.name"] [uri "/.git/config"] [unique_id "Zqh8WNAwM5GLrGWtr31-hgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-29 22:31:26
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 29 18:31:21.370019 2024] [security2:error] [pid 2389:tid 2389] [client 2a03:e600:100::4:54446] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.antoniocobo.com"] [uri "/.git/config"] [unique_id "ZqgYOWywG0uRDBLCcckTtAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Delta Whiskey
2024-07-26 07:44:03
(1 year ago)
Multiple failed WordPress authentication attempts
Brute-Force
Web App Attack