๐ฌ๐ง
Buster
2025-02-13 20:43:00
(1 year ago)
Repeated distributed script kiddie mass attack attempts blocked: Perm Blocked ASN and country
Open Proxy
Hacking
Brute-Force
Web App Attack
๐ช๐ธ
librebit
2025-02-12 13:10:17
(1 year ago)
Brute force
Brute-Force
๐บ๐ธ
etu brutus
2025-02-12 05:35:31
(1 year ago)
4.227.36.64 Blocked by [Attack Vector List]
...
Hacking
Brute-Force
Exploited Host
Anonymous
2025-02-08 23:41:51
(1 year ago)
Excessive crawling/scraping
Hacking
Brute-Force
๐ฉ๐ช
Carsten
2025-02-06 16:33:33
(1 year ago)
bad web bot
Bad Web Bot
๐ฆ๐บ
MAGIC
2025-02-06 14:02:12
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฌ๐ง
Mendip_Defender
2025-02-05 19:03:16
(1 year ago)
4.227.36.64 - - [05/Feb/2025:19:03:15 +0000] "GET /robots.txt HTTP/1.0" 200 972 "-" "Mozilla/5.0 App ...
show more
4.227.36.64 - - [05/Feb/2025:19:03:15 +0000] "GET /robots.txt HTTP/1.0" 200 972 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)"
...
show less
Bad Web Bot
๐ฆ๐บ
MAGIC
2025-02-04 09:00:21
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-02-02 19:22:45
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 02 14:22:42.553839 2025] [security2:error] [pid 3983696:tid 3983696] [client 4.227.36.64:49332] [client 4.227.36.64] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bennoyes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bennoyes.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Z5_GAlOAGGF-ZpTgMTNmkgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-02-02 12:30:07
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 02 07:30:01.479507 2025] [security2:error] [pid 17143:tid 17247] [client 4.227.36.64:44894] [client 4.227.36.64] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.woadstress.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.woadstress.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Z59lSe9tgoK2ZR8b8kRJzwAAAQs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-02-02 11:04:41
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 02 06:04:36.409258 2025] [security2:error] [pid 11780:tid 11791] [client 4.227.36.64:37066] [client 4.227.36.64] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||whatismetamodern.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "whatismetamodern.com"] [uri "/wp-json/wp/v2/users/5"] [unique_id "Z59RRNn5TpDv-XjsGhh2BQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-02-01 11:06:23
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 01 06:06:16.802234 2025] [security2:error] [pid 7505:tid 7505] [client 4.227.36.64:33610] [client 4.227.36.64] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||pages4you.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pages4you.com"] [uri "/TrainingBySteve.com"] [unique_id "Z54AKDh1IDtu2o8GpcVNuQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-02-01 06:56:00
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 01 01:55:54.444132 2025] [security2:error] [pid 22008:tid 22008] [client 4.227.36.64:41984] [client 4.227.36.64] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.chrisbilder.com|F|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.chrisbilder.com"] [uri "/research/WTMB/multigibbs64.dll"] [unique_id "Z53Feu2iQJWjIH57ggAH5AAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-01-31 15:34:21
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 4.227.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 31 10:34:15.513041 2025] [security2:error] [pid 29123:tid 29251] [client 4.227.36.64:49760] [client 4.227.36.64] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||dubarch.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "dubarch.com"] [uri "/ahmedalbanna.com"] [unique_id "Z5ztdwYDh5GzLp11YMffdQAAANM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-01-31 06:17:21
(1 year ago)
Excessive crawling/scraping
Hacking
Brute-Force