|
๐ณ๐ฑ
Site.eu
|
|
Excessive multi-domain requests
|
Brute-Force
|
|
|
๐ฎ๐น
IRT@Unisi
|
|
Multiple web server 400 error codes from same source ip.
|
Bad Web Bot
|
|
|
Anonymous
|
|
This IP was detected by CrowdSec triggering crowdsecurity/http-crawl-non_statics
|
Bad Web Bot
Web App Attack
|
|
|
๐ณ๐ฑ
Site.eu
|
|
Excessive multi-domain requests
|
Brute-Force
|
|
|
๐บ๐ธ
mattw
|
|
Observed suspicious activity
|
Web App Attack
|
|
|
๐จ๐ญ
backslash
|
|
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
|
Bad Web Bot
|
|
|
Anonymous
|
|
This IP was detected by CrowdSec triggering crowdsecurity/http-crawl-non_statics
|
Bad Web Bot
Web App Attack
|
|
|
Anonymous
|
|
Malicious activity detected
|
Hacking
Brute-Force
|
|
|
๐ฆ๐บ
afleventoffice.com.au
|
|
GET /grand_final_packages.php HTTP/1.1
|
Web App Attack
|
|
|
๐ฉ๐ช
Skyrider
|
|
34.174.46.21 - - [26/Sep/2025:13:29:40 +0200] "GET /members/misc.php?action=markread&my_post_key ...
show more
34.174.46.21 - - [26/Sep/2025:13:29:40 +0200] "GET /members/misc.php?action=markread&my_post_key=ad0ec1df54c2f6ee36ce1f555c3a0810 HTTP/1.1" 404 47 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:135.0) Gecko/20100101 Firefox/135.0"
34.174.46.21 - - [26/Sep/2025:13:29:40 +0200] "GET /members/showteam.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:135.0) Gecko/20100101 Firefox/135.0"
34.174.46.21 - - [26/Sep/2025:13:29:41 +0200] "GET /threads/misc.php?action=markread&my_post_key=ad0ec1df54c2f6ee36ce1f555c3a0810 HTTP/1.1" 404 47 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:135.0) Gecko/20100101 Firefox/135.0"
34.174.46.21 - - [26/Sep/2025:13:29:42 +0200] "GET /threads/showteam.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:135.0) Gecko/20100101 Firefox/135.0"
34.174.46.21 - - [26/Sep/2025:13:29:42 +0200] "GET /General-Chat--24-forum HTTP/1.1" 403 5414 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:135.0) Gecko/20100101 Firefox/135.0"
show less
|
Bad Web Bot
Web App Attack
|
|
|
๐ฆ๐บ
2000cn.com.au
|
|
This IP was detected by CrowdSec triggering crowdsecurity/http-probing
|
Hacking
Web App Attack
|
|
|
๐บ๐ธ
jormaster3k
|
|
Excessive crawling
|
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 34.174.46.21 (21.46.174.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210730) triggered by 34.174.46.21 (21.46.174.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 25 06:20:34.709439 2025] [security2:error] [pid 25963:tid 25963] [client 34.174.46.21:53650] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.beirutbazar.com|F|2"] [data ".karenchekerdjian.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.beirutbazar.com"] [uri "/http:/www.karenchekerdjian.com"] [unique_id "aNUXclBG-IKxYsAcv6ab2wAAAEg"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 34.174.46.21 (21.46.174.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210730) triggered by 34.174.46.21 (21.46.174.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 25 05:57:24.921286 2025] [security2:error] [pid 20598:tid 20598] [client 34.174.46.21:47730] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.circulodesonido.org|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.circulodesonido.org"] [uri "/uncategorized/marbella/[email protected]"] [unique_id "aNUSBLvxjj2-wUV2JtVUOAAAAAw"], referer: https://google.com/
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 34.174.46.21 (21.46.174.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210730) triggered by 34.174.46.21 (21.46.174.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 25 03:33:32.149274 2025] [security2:error] [pid 2224:tid 2224] [client 34.174.46.21:34224] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||tulsatvmemories.com|F|2"] [data ".ktul.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tulsatvmemories.com"] [uri "/www.ktul.com"] [unique_id "aNTwTCbCnoKuOALanwGgPQAAAAE"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|