|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210730) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 19 02:55:49.885786 2025] [security2:error] [pid 30086:tid 30086] [client 34.140.65.80:50568] [client 34.140.65.80] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.raintechgutters.com|F|2"] [data ".raintechgutters.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.raintechgutters.com"] [uri "/gutter-contractors-near-me-orlando/www.raintechgutters.com"] [unique_id "Z9pqdc-o7lqOwAYRrgq9BgAAAA8"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 18 08:06:14.655027 2025] [security2:error] [pid 18805:tid 18805] [client 34.140.65.80:54912] [client 34.140.65.80] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||www.skintormint.com|F|4"] [data "REQUEST_URI=/wp-content/themes/herald/assets/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.skintormint.com"] [uri "/wp-content/themes/herald/assets/js/%url%"] [unique_id "Z9lhthFpHjQTb0OIXTUm0gAAAAc"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฆ๐บ
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
|
๐บ๐ธ
BarredOwl
|
|
34.140.65.80 - - [17/Mar/2025:07:00:48 -0400] "GET /install.php HTTP/1.1"
|
Hacking
Web App Attack
|
|
|
๐ฉ๐ช
conseilgouz
|
|
dow-Joomla User : try to access forms...
|
Hacking
|
|
|
๐ฉ๐ช
SCHAPPY
|
|
Excessive crawling, scraping, request limit exceeded, HTTP code 429.
|
Web App Attack
|
|
|
Anonymous
|
|
Malicious activity detected
|
Hacking
Brute-Force
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 13 18:45:54.603410 2025] [security2:error] [pid 3005266:tid 3005266] [client 34.140.65.80:51690] [client 34.140.65.80] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||www.mooseled.com|F|4"] [data "REQUEST_URI=/catalog/view/javascript/jquery/magnific/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.mooseled.com"] [uri "/catalog/view/javascript/jquery/magnific/%url%"] [unique_id "Z9NgIp3TJ-RboluvXoaWkwAAAAE"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
Anonymous
|
|
suspicious activities
|
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 12 19:58:20.383621 2025] [security2:error] [pid 11818:tid 11818] [client 34.140.65.80:40474] [client 34.140.65.80] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||rewirenetworks.com|F|4"] [data "REQUEST_URI=/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "rewirenetworks.com"] [uri "/%url%"] [unique_id "Z9IfnGrMf76AXKT-S3JPJwAAAAo"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
etu brutus
|
|
34.140.65.80 has been banned for [WebApp Attack]
...
|
Hacking
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.140.65.80 (80.65.140.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 12 10:43:34.149293 2025] [security2:error] [pid 9049:tid 9049] [client 34.140.65.80:59944] [client 34.140.65.80] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||alexetjeremy.com|F|4"] [data "REQUEST_URI=/vendor/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "alexetjeremy.com"] [uri "/vendor/%url%"] [unique_id "Z9GdluYwLl6bXF8z8wLo3AAAABQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฆ๐บ
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
|
๐จ๐ญ
backslash
|
|
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
|
Bad Web Bot
|
|
|
๐ฉ๐ช
FeG Deutschland
|
|
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 147
|
Exploited Host
Web App Attack
|
|