Anonymous
2025-01-07 13:22:46
(5 days ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
Anonymous
2025-01-06 16:54:54
(6 days ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
Anonymous
2024-12-03 08:51:36
(1 month ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
TPI-Abuse
2024-11-14 01:23:51
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 13 20:23:40.963728 2024] [security2:error] [pid 2880605:tid 2880605] [client 2a06:1700:0:12::2:55648] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.restaurantfixture.com.restaurantfurnituremart.com"] [uri "/.git/config"] [unique_id "ZzVRHCgyiapPv-3JbwKfAAAAAB4"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-07 03:57:25
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 06 22:57:18.481163 2024] [security2:error] [pid 2879:tid 2900] [client 2a06:1700:0:12::2:21636] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "robotics4fun.com"] [uri "/wp-config.php.save.10"] [unique_id "Zyw6nlhfAzrAyl2nACzkAgAAANI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-05 17:40:05
(2 months ago)
| Multiple common web attacks from same source ip. (multiple servers)
Hacking
SQL Injection
Web App Attack
XICTRON
2024-11-05 14:35:05
(2 months ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
TPI-Abuse
2024-09-03 11:23:57
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 03 07:23:48.470093 2024] [security2:error] [pid 23636:tid 23636] [client 2a06:1700:0:12::2:6100] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.anthonyjoseph.us"] [uri "/.git/config"] [unique_id "ZtbxxBZMIlfonnEulz8X7wAAABM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-18 04:20:01
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 18 00:19:54.614958 2024] [security2:error] [pid 23151:tid 23151] [client 2a06:1700:0:12::2:9110] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.cageliners.net"] [uri "/.git/config"] [unique_id "ZsF2alfru_JLUnSUHzja9gAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-17 00:47:33
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210730) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 16 20:47:25.071934 2024] [security2:error] [pid 3297:tid 3297] [client 2a06:1700:0:12::2:31548] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||lzbvi.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lzbvi.com"] [uri "/l.sql"] [unique_id "Zr_zHc4lGEdCyVCGFaib2gAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-06 06:02:50
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 02:02:44.244704 2024] [security2:error] [pid 28947:tid 28947] [client 2a06:1700:0:12::2:35500] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.sitexpress.es"] [uri "/.git/config"] [unique_id "ZrG8hIgIuH-5DfW3owO0LAAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-06 03:45:03
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210730) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 23:44:58.000570 2024] [security2:error] [pid 25388:tid 25397] [client 2a06:1700:0:12::2:12194] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ward-bergerhouse.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ward-bergerhouse.org"] [uri "/rhouse.sql"] [unique_id "ZrGcOdmvn6awLDKhg2rRmwAAAUY"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-05 17:07:40
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 13:07:32.454124 2024] [security2:error] [pid 31636:tid 31636] [client 2a06:1700:0:12::2:38596] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.moceantactical.com"] [uri "/.git/config"] [unique_id "ZrEG1Fn3ai0XQbS6lOdfVQAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-04 13:14:36
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 09:14:28.887400 2024] [security2:error] [pid 7514:tid 7514] [client 2a06:1700:0:12::2:11914] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "batfry.com"] [uri "/wp-config.php.orig"] [unique_id "Zq9-tFPVb2udSaG_ApTuBAAAABQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-07-30 14:06:24
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel1 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:12::2 (bucarest01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 30 10:06:19.910026 2024] [security2:error] [pid 20508:tid 20508] [client 2a06:1700:0:12::2:26502] [client 2a06:1700:0:12::2] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.thesweetfam.com"] [uri "/.git/config"] [unique_id "ZqjzW9966cDCceKWe-YUnAAAABw"] show less
Brute-Force
Bad Web Bot
Web App Attack