TPI-Abuse
2024-08-05 08:10:44
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 04:10:34.887429 2024] [security2:error] [pid 4734:tid 4734] [client 36.70.228.124:59739] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "polygonresearch.seekingthemind.com"] [uri "/.git/"] [unique_id "ZrCI-uCMKYXkcWwgTY8J3gAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-05 07:42:08
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 03:41:55.307723 2024] [security2:error] [pid 12735:tid 12735] [client 36.70.228.124:57929] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tomwilsoncounseling.com"] [uri "/.git/"] [unique_id "ZrCCQ3mcLmmFZAxjKwfkQwAAAAg"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-05 06:48:04
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 02:47:54.788775 2024] [security2:error] [pid 16210:tid 16216] [client 36.70.228.124:60628] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.morrisfinancialpartners.com"] [uri "/.git/"] [unique_id "ZrB1mnmeDjMbV7Ye_DAYegAAAUQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
advena
2024-08-05 06:30:55
(2 months ago)
36.70.228.124 (AS7713 TELKOMNET-AS-AP PT Telekomunikasi Indonesia) was intercepted at 2024-08-05T06: ... show more 36.70.228.124 (AS7713 TELKOMNET-AS-AP PT Telekomunikasi Indonesia) was intercepted at 2024-08-05T06:29:40Z after violating WAF directive: d0380eeb922844b5b69152600cea062c. Pre-cautionary/corrective action applied: block. show less
Web Spam
Hacking
Brute-Force
Web App Attack
TPI-Abuse
2024-08-05 06:01:19
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 02:01:06.451692 2024] [security2:error] [pid 28828:tid 28828] [client 36.70.228.124:60072] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "app.s1global.net.s1global.net"] [uri "/.git/"] [unique_id "ZrBqoubB8lcVPJhK9TqQWgAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-05 05:27:58
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 01:27:51.370153 2024] [security2:error] [pid 17973:tid 17973] [client 36.70.228.124:61665] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sky-distributors.com"] [uri "/.git/"] [unique_id "ZrBi1zK5IWsUN078qfwG1AAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
octageeks.com
2024-08-05 04:07:08
(2 months ago)
Wordpress malicious attack:[octa404]
Web App Attack
Ba-Yu
2024-08-05 04:00:44
(2 months ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
TPI-Abuse
2024-08-05 03:24:18
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 23:24:10.008091 2024] [security2:error] [pid 13833:tid 13833] [client 36.70.228.124:59000] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "inspiredsidekick.com"] [uri "/.git/"] [unique_id "ZrBF2uHInB24Waj7bFPPSQAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
lumbermatt_de
2024-08-05 02:08:25
(2 months ago)
Vulnerability exploit attack detected
Web App Attack
TPI-Abuse
2024-08-05 01:34:34
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 21:34:26.573360 2024] [security2:error] [pid 8714:tid 8714] [client 36.70.228.124:56327] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arcbridge.com"] [uri "/.git/"] [unique_id "ZrAsIrFdLEW_RAtWMoMMmQAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-08-05 00:41:46
(2 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_MODSEC
Brute-Force
SSH
TPI-Abuse
2024-08-04 23:28:47
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 19:28:38.053316 2024] [security2:error] [pid 14211:tid 14211] [client 36.70.228.124:58733] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "esa-nne.org"] [uri "/.git/"] [unique_id "ZrAOptAh06XW8dzIYp6PRQAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-08-04 22:22:39
(2 months ago)
fail2ban apache-modsecurity [msg "Restricted access based on geolocation rules."] [uri "/.git/"]
Web App Attack
TPI-Abuse
2024-08-04 20:58:24
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 16:58:14.934960 2024] [security2:error] [pid 16735:tid 16735] [client 36.70.228.124:59011] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "limobustacoma.com"] [uri "/.git/"] [unique_id "Zq_rZiT8ewGOFr8d87J-WQAAAAg"] show less
Brute-Force
Bad Web Bot
Web App Attack