Anonymous
2024-10-18 18:40:03
(1 month ago)
Malicious activity detected
Hacking
Web App Attack
ghostwarriors
2024-10-17 14:20:10
(1 month ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
ksol-hostmaster
2024-10-17 13:19:27
(1 month ago)
2024/10/17 15:19:27 [error] 10585#595358: *6912317 limiting requests, excess: 0.166 by zone "crawler ... show more 2024/10/17 15:19:27 [error] 10585#595358: *6912317 limiting requests, excess: 0.166 by zone "crawler", client: 47.128.111.144, server: crxforum.ksol.io, request: "GET /showTopic.php?first=750&offset=50&seed=670d7579d366f&topicId=526 HTTP/2.0", host: "crxforum.ksol.io"
... show less
Bad Web Bot
MAGIC
2024-10-15 11:11:38
(1 month ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Anonymous
2024-10-13 12:21:16
(1 month ago)
Excessive crawling/scraping
Hacking
Brute-Force
Anonymous
2024-10-13 02:37:26
(1 month ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
TheMadBeaker
2024-10-11 13:42:46
(1 month ago)
Fail2Ban Ban Triggered
HTTP Exploit Attempt
Brute-Force
Web App Attack
TPI-Abuse
2024-10-06 02:11:36
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.111.144 (ec2-47-128-111-144.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.111.144 (ec2-47-128-111-144.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 05 22:11:32.761012 2024] [security2:error] [pid 6380:tid 6436] [client 47.128.111.144:28740] [client 47.128.111.144] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.digital4z.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.digital4z.com"] [uri "/wp-content/plugins/jetpack/modules/publicize/WS_FTP.LOG"] [unique_id "ZwHx1NFqdAdWpnajuQfyEwAAAJU"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-09-28 05:08:15
(2 months ago)
Excessive crawling/scraping
Hacking
Brute-Force
rtbh.com.tr
2024-09-26 20:54:17
(2 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
TPI-Abuse
2024-09-26 11:30:59
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.111.144 (ec2-47-128-111-144.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.111.144 (ec2-47-128-111-144.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 26 07:30:53.792643 2024] [security2:error] [pid 9729:tid 9729] [client 47.128.111.144:39572] [client 47.128.111.144] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.med-engineering.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.med-engineering.com"] [uri "/molvir.com"] [unique_id "ZvVF7RBJg00sr9Z0rQfYvAAAAAo"] show less
Brute-Force
Bad Web Bot
Web App Attack
rtbh.com.tr
2024-09-25 20:54:18
(2 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
ghostwarriors
2024-09-25 02:20:10
(2 months ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
ksol-hostmaster
2024-09-25 01:53:19
(2 months ago)
2024/09/25 03:53:18 [error] 55886#126399: *260216 limiting requests, excess: 0.126 by zone "crawler" ... show more 2024/09/25 03:53:18 [error] 55886#126399: *260216 limiting requests, excess: 0.126 by zone "crawler", client: 47.128.111.144, server: crxforum.ksol.io, request: "GET /showTopic.php?first=200&offset=50&seed=66ec95abd8ab7&topicId=56 HTTP/2.0", host: "crxforum.ksol.io"
... show less
Bad Web Bot
rtbh.com.tr
2024-09-20 20:54:28
(2 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force