|
๐ฆ๐บ
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.38.166.115 (115.166.38.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210381) triggered by 34.38.166.115 (115.166.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 19 16:15:55.328728 2023] [security2:error] [pid 22999] [client 34.38.166.115:52612] [client 34.38.166.115] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||savingshvac.com|F|4"] [data "REQUEST_URI=/wp-content/themes/flatsome/assets/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "savingshvac.com"] [uri "/wp-content/themes/flatsome/assets/js/%url%"] [unique_id "ZYIIC6mvi8bSxwCMT5rh9QAAABY"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.38.166.115 (115.166.38.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210381) triggered by 34.38.166.115 (115.166.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 19 01:49:01.751461 2023] [security2:error] [pid 28991] [client 34.38.166.115:43816] [client 34.38.166.115] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||gallodestinationservices.com|F|4"] [data "REQUEST_URI=/contact/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "gallodestinationservices.com"] [uri "/contact/js/%url%"] [unique_id "ZYE83Wt_capZEGde_L3DlQAAAAQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฌ๐ง
OOTD
|
|
magento_version probing
|
Web App Attack
|
|
|
Anonymous
|
|
|
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.38.166.115 (115.166.38.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210381) triggered by 34.38.166.115 (115.166.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 17 03:20:18.118120 2023] [security2:error] [pid 17108:tid 47810954888960] [client 34.38.166.115:44424] [client 34.38.166.115] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||www.lipink.co.uk|F|4"] [data "REQUEST_URI=/wp-content/themes/Divi/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.lipink.co.uk"] [uri "/wp-content/themes/Divi/js/%url%"] [unique_id "ZX6vQrqbvZFin5sh4R3jjgAAAMo"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
octageeks.com
|
|
Wordpress malicious attack:[octa404]
|
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 34.38.166.115 (115.166.38.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210730) triggered by 34.38.166.115 (115.166.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 15 11:33:52.425814 2023] [security2:error] [pid 1728] [client 34.38.166.115:37882] [client 34.38.166.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||silvermoonherbals.com|F|2"] [data ".moongoth.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "silvermoonherbals.com"] [uri "/www.moongoth.com"] [unique_id "ZXx_8BOkj14vxoMavBPG8gAAABA"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
octageeks.com
|
|
Wordpress malicious attack:[octa404]
|
Web App Attack
|
|
|
๐ณ๐ฑ
Harm222
|
|
48w-(visforms) : try to access forms...
|
Hacking
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 34.38.166.115 (115.166.38.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210730) triggered by 34.38.166.115 (115.166.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 13 19:59:03.410319 2023] [security2:error] [pid 3890989] [client 34.38.166.115:34862] [client 34.38.166.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||benjaminshaw.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "benjaminshaw.com"] [uri "/baggywrinkle/Thumbs.db"] [unique_id "ZXpTV8QyqA2G2Gyq40OPegAAAA8"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฆ๐บ
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.38.166.115 (115.166.38.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210381) triggered by 34.38.166.115 (115.166.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 13 13:58:40.654955 2023] [security2:error] [pid 9808] [client 34.38.166.115:41770] [client 34.38.166.115] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||www.medicalpdq.com|F|4"] [data "REQUEST_URI=/wp-content/plugins/nicepage/assets/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.medicalpdq.com"] [uri "/wp-content/plugins/nicepage/assets/js/%url%"] [unique_id "ZXn-4JGNrQ6U7VS6Rh2fsQAAAAM"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
octageeks.com
|
|
Wordpress malicious attack:[octa404]
|
Web App Attack
|
|
|
๐ซ๐ท
conseilgouz
|
|
siw-Joomla User : try to access forms...
|
Hacking
|
|