|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 24 02:36:10.497478 2024] [security2:error] [pid 17202:tid 17202] [client 34.76.96.167:37508] [client 34.76.96.167] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||insua.com|F|4"] [data "REQUEST_URI=/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "insua.com"] [uri "/js/%url%"] [unique_id "Zsl_WrnlpTg8MkGYA8QzUQAAAAE"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
vestibtech
|
|
34.76.96.167 - - [22/Aug/2024:16:52:40 -0600] "GET /util/login.aspx HTTP/1.1" 301 501 "-" "Mozilla/5 ...
show more
34.76.96.167 - - [22/Aug/2024:16:52:40 -0600] "GET /util/login.aspx HTTP/1.1" 301 501 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:52.0) Gecko/20100101 Firefox/52.0"
...
show less
|
Web App Attack
|
|
|
Anonymous
|
|
Malicious activity detected
|
Hacking
Brute-Force
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 18 10:43:50.650166 2024] [security2:error] [pid 26379:tid 26379] [client 34.76.96.167:47130] [client 34.76.96.167] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||newmanwood.com|F|4"] [data "REQUEST_URI=/wp-content/themes/Divi/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "newmanwood.com"] [uri "/wp-content/themes/Divi/js/%url%"] [unique_id "ZsIIpur_j21u6KVeB9FcQAAAABE"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฉ๐ช
Ba-Yu
|
|
General hacking/exploits/scanning
|
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
|
|
|
๐ฆ๐บ
Bay13
|
|
f2b http-redirect
|
Hacking
Web App Attack
|
|
|
Anonymous
|
|
34.76.96.167 - - [15/Aug/2024:21:13:51 +0200] "GET / HTTP/1.1" 403 3921
...
|
Web App Attack
|
|
|
๐ฌ๐ง
OOTD
|
|
magento_version probing
|
Web App Attack
|
|
|
๐ฆ๐บ
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
|
๐บ๐ธ
mw
|
|
34.76.96.167 - - [11/Aug/2024:02:17:58 -0500] "GET /about/careers/itemDataObject.url HTTP/1.1" 404 3 ...
show more
34.76.96.167 - - [11/Aug/2024:02:17:58 -0500] "GET /about/careers/itemDataObject.url HTTP/1.1" 404 36348 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:52.0) Gecko/20100101 Firefox/52.0"
34.76.96.167 - - [11/Aug/2024:02:17:58 -0500] "GET /contact_us/itemDataObject.url HTTP/1.1" 404 36295 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:52.0) Gecko/20100101 Firefox/52.0"
34.76.96.167 - - [11/Aug/2024:02:18:03 -0500] "GET /about/our-story/awards/itemDataObject.url HTTP/1.1" 404 36366 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:52.0) Gecko/20100101 Firefox/52.0"
34.76.96.167 - - [11/Aug/2024:02:18:03 -0500] "GET /about/itemDataObject.url HTTP/1.1" 404 36287 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:52.0) Gecko/20100101 Firefox/52.0"
34.76.96.167 - - [11/Aug/2024:02:18:05 -0500] "GET /about/our-story/why-us/itemDataObject.url HTTP/1.1" 404 36367 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:52.0) Gecko/20100101 Firefox/52.0"
34.76.96.167 - - [11/Au
...
show less
|
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 11 01:13:36.012255 2024] [security2:error] [pid 15741:tid 15741] [client 34.76.96.167:34314] [client 34.76.96.167] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||akistech.com|F|4"] [data "REQUEST_URI=/wp-content/themes/eteon/assets/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "akistech.com"] [uri "/wp-content/themes/eteon/assets/js/%url%"] [unique_id "ZrhIgO14bWd1N9--yzdwagAAAAQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 09 21:04:52.617918 2024] [security2:error] [pid 18664:tid 18664] [client 34.76.96.167:35312] [client 34.76.96.167] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||www.hvacmechanalysis.com|F|4"] [data "REQUEST_URI=/wp-content/themes/enfold/js/aviapopup/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.hvacmechanalysis.com"] [uri "/wp-content/themes/enfold/js/aviapopup/%url%"] [unique_id "Zra8tDtxQbS7JEVVlpZNzgAAAA0"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210381) triggered by 34.76.96.167 (167.96.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 03 13:12:04.331145 2024] [security2:error] [pid 31632:tid 31632] [client 34.76.96.167:54178] [client 34.76.96.167] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||stacyfarm.com|F|4"] [data "REQUEST_URI=/wp-content/plugins/easy-facebook-likebox/facebook/frontend/assets/js/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "stacyfarm.com"] [uri "/wp-content/plugins/easy-facebook-likebox/facebook/frontend/assets/js/%url%"] [unique_id "Zq5k5Bzc0XhvGIHvACte-gAAAAQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|