MAGIC
2024-12-07 02:04:19
(1 day ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Savvii
2024-12-05 00:12:29
(3 days ago)
15 attempts against mh-modsecurity-ban on drop
Brute-Force
Web App Attack
penjaga BRIN
2024-12-04 19:25:09
(3 days ago)
XSS (Cross Site Scripting)-111
Web App Attack
France Artisanat
2024-12-03 08:04:11
(5 days ago)
ATTAQUE BRUTEFORCE EN COURS
Web Spam
Anonymous
2024-12-02 08:46:06
(6 days ago)
Excessive crawling/scraping
Hacking
Brute-Force
3202931de
2024-12-02 03:30:08
(6 days ago)
Contact-Form SPAM (Form is empty)
Web Spam
Anonymous
2024-12-01 23:29:51
(6 days ago)
4.227.36.114 - - [02/Dec/2024:00:24:54 +0100] "GET /typo3temp/assets/compressed/merged-657fa7cf2196d ... show more 4.227.36.114 - - [02/Dec/2024:00:24:54 +0100] "GET /typo3temp/assets/compressed/merged-657fa7cf2196dc2bdf4d31bdf5ecc823-min.js.gz?1728208252 HTTP/1.1" 404 8854 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)"
4.227.36.114 - - [02/Dec/2024:00:24:57 +0100] "GET /typo3temp/assets/compressed/merged-f5983220971bf289e426ee9a8b9fdc78-min.js.gz?1728098816 HTTP/1.1" 404 520 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)"
4.227.36.114 - - [02/Dec/2024:00:25:00 +0100] "GET /typo3temp/assets/compressed/merged-f5983220971bf289e426ee9a8b9fdc78-min.js.gz?1727600252 HTTP/1.1" 404 520 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)"
4.227.36.114 - - [02/Dec/2024:00:25:03 +0100] "GET /typo3temp/assets/compressed/merged-657fa7cf2196dc2bdf4d31bdf5ecc823-min.js.gz?1728065074 HTTP/1.1" 404 520 "-" "Mozilla/5.0 AppleWebKit/537.36
... show less
DDoS Attack
exxos
2024-11-30 21:15:40
(1 week ago)
web exploit attacks
Web App Attack
kernel-error.de
2024-11-28 04:29:55
(1 week ago)
::ffff:4.227.36.114 - - [28/Nov/2024:05:29:47 +0100] "GET /wp-includes/images/wp-login.php" HTTP ... show more ::ffff:4.227.36.114 - - [28/Nov/2024:05:29:47 +0100] "GET /wp-includes/images/wp-login.php" HTTP/2.0" 404 10597 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)"
::ffff:4.227.36.114 - - [28/Nov/2024:05:29:50 +0100] "GET /wp-login.php" HTTP/2.0" 404 10597 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)"
::ffff:4.227.36.114 - - [28/Nov/2024:05:29:53 +0100] "GET /wp-includes/wp-login.php" HTTP/2.0" 404 10597 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)"
... show less
Hacking
Web App Attack
Savvii
2024-11-27 07:27:49
(1 week ago)
15 attempts against mh-modsecurity-ban on drop
Brute-Force
Web App Attack
Anonymous
2024-11-27 05:48:12
(1 week ago)
Bot / seems abusive / Apache connections: 22
DDoS Attack
Web Spam
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-27 01:54:56
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 4.227.36.114 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 4.227.36.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 26 20:54:50.000902 2024] [security2:error] [pid 29776:tid 29776] [client 4.227.36.114:53702] [client 4.227.36.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gaeltv.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gaeltv.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Z0Z76aL94u95wVehs_FhPAAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-26 23:59:08
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 4.227.36.114 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 4.227.36.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 26 18:59:05.474336 2024] [security2:error] [pid 5810:tid 5810] [client 4.227.36.114:51552] [client 4.227.36.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.theseventhcongregationofladderdayvixens.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.theseventhcongregationofladderdayvixens.org"] [uri "/wp-json/wp/v2/users/2"] [unique_id "Z0ZgyV0tm1_DKHIIRQmnIQAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
Cloudkul Cloudkul
2024-11-26 21:42:04
(1 week ago)
Multiple unauthorized attempts to access web resources
Brute-Force
Web App Attack
Swiptly
2024-11-26 15:07:35
(1 week ago)
Aggressive SEO Bots
...
Bad Web Bot