geot
2024-12-03 13:32:52
(1 month ago)
GET /.git/ HTTP/1.1
Hacking
Web App Attack
octageeks.com
2024-12-03 05:10:00
(1 month ago)
Wordpress malicious attack:[octa404]
Web App Attack
clapper
2024-12-03 03:27:14
(1 month ago)
(mod_security) mod_security (id:949110) triggered by 34.229.87.174 (US/United States/ec2-34-229-87-1 ... show more (mod_security) mod_security (id:949110) triggered by 34.229.87.174 (US/United States/ec2-34-229-87-174.compute-1.amazonaws.com): 5 in the last 3600 secs; ID: rub show less
Brute-Force
Bad Web Bot
Tripwire
2024-12-03 03:16:47
(1 month ago)
Scanning for exploits - /core/.env
Web App Attack
mnsf
2024-12-03 03:04:20
(1 month ago)
Too many Status 40X (16)
Brute-Force
Web App Attack
Anonymous
2024-12-03 02:58:51
(1 month ago)
Restricted File Access Requests
Hacking
Brute-Force
TPI-Abuse
2024-12-03 02:29:20
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.229.87.174 (ec2-34-229-87-174.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 34.229.87.174 (ec2-34-229-87-174.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 21:29:13.936747 2024] [security2:error] [pid 18634:tid 18634] [client 34.229.87.174:42474] [client 34.229.87.174] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kiddocommunication.com"] [uri "/.git/"] [unique_id "Z05s-Q5THrMAtHY8XydglwAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-03 01:36:03
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.229.87.174 (ec2-34-229-87-174.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 34.229.87.174 (ec2-34-229-87-174.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 20:35:58.920108 2024] [security2:error] [pid 18232:tid 18232] [client 34.229.87.174:60984] [client 34.229.87.174] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.aethena.org"] [uri "/.git/"] [unique_id "Z05gfqAHlhknQSrqPJ7xYgAAABM"] show less
Brute-Force
Bad Web Bot
Web App Attack
Burayot
2024-12-03 01:25:41
(1 month ago)
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 34.229.87.174 (US/United States/ec2- ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 34.229.87.174 (US/United States/ec2-34-229-87-174.compute-1.amazonaws.com): 2 in the last 3600 secs show less
Web App Attack
ALPHANET
2024-12-03 00:05:45
(1 month ago)
web exploits
Hacking
Exploited Host
Web App Attack
TPI-Abuse
2024-12-02 23:42:19
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.229.87.174 (ec2-34-229-87-174.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 34.229.87.174 (ec2-34-229-87-174.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 18:42:15.645447 2024] [security2:error] [pid 21530:tid 21530] [client 34.229.87.174:36324] [client 34.229.87.174] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fruitacpa.com.rooksfamily.com"] [uri "/.git/"] [unique_id "Z05F1387QtVeEStLgZJzoQAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-12-02 23:37:41
(1 month ago)
Probing to gain illegal access
Web App Attack
w-e-c-l-o-u-d-i-t
2024-12-02 23:32:34
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.229.87.174 (US/United States/ec2-34-229-87-1 ... show more (mod_security) mod_security (id:210492) triggered by 34.229.87.174 (US/United States/ec2-34-229-87-174.compute-1.amazonaws.com): 1 in the last 600 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC show less
Brute-Force
SSH
Aetherweb Ark
2024-12-02 23:21:26
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.229.87.174 (US/United States/ec2-34-229-87-1 ... show more (mod_security) mod_security (id:210492) triggered by 34.229.87.174 (US/United States/ec2-34-229-87-174.compute-1.amazonaws.com): N in the last X secs show less
Web App Attack
TPI-Abuse
2024-12-02 23:15:22
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.229.87.174 (ec2-34-229-87-174.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 34.229.87.174 (ec2-34-229-87-174.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 18:15:16.127790 2024] [security2:error] [pid 2111:tid 2111] [client 34.229.87.174:35164] [client 34.229.87.174] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "highaltitudebaking.com"] [uri "/.git/"] [unique_id "Z04_hOS7wKxd_2oOPgQefwAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack