Mendip_Defender
2024-06-25 02:51:29
(3 months ago)
47.128.126.162 - - [25/Jun/2024:03:51:31 +0100] "GET /my-vehicles/2019/landrover-discovery-2/ HTTP/1 ... show more 47.128.126.162 - - [25/Jun/2024:03:51:31 +0100] "GET /my-vehicles/2019/landrover-discovery-2/ HTTP/1.0" 200 25605 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected] ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36"
... show less
Bad Web Bot
MAGIC
2024-06-22 22:04:58
(3 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
DDoS Attack
Bad Web Bot
Bad Web Bot
MAGIC
2024-06-14 19:05:17
(3 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
DDoS Attack
Bad Web Bot
Bad Web Bot
futuremakers.gr
2024-06-13 15:58:39
(3 months ago)
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 47.128.126.162 (SG/S ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 47.128.126.162 (SG/Singapore/ec2-47-128-126-162.ap-southeast-1.compute.amazonaws.com) show less
Bad Web Bot
toolsource.com
2024-06-10 02:28:50
(3 months ago)
47.128.126.162 - - [09/Jun/2024:22:28:49 -0400] "GET /armstrong-m-27803.html?display=9&filter_id=298 ... show more 47.128.126.162 - - [09/Jun/2024:22:28:49 -0400] "GET /armstrong-m-27803.html?display=9&filter_id=29841&page=7&sort=20a HTTP/2.0" 200 72114 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
... show less
Bad Web Bot
TPI-Abuse
2024-06-04 07:17:12
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.126.162 (ec2-47-128-126-162.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.126.162 (ec2-47-128-126-162.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 04 03:17:08.692919 2024] [security2:error] [pid 23427] [client 47.128.126.162:61458] [client 47.128.126.162] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.efhgtc.org|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.efhgtc.org"] [uri "/[email protected] "] [unique_id "Zl6_dDJZQP9uBdgdJGLAbAAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
bigorre.org
2024-05-29 09:57:04
(4 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
MAGIC
2024-05-27 01:16:31
(4 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
toolsource.com
2024-05-20 14:23:20
(4 months ago)
47.128.126.162 - - [20/May/2024:10:23:19 -0400] "GET /hanson-m-153.html?filter_id=33021&page=6&sort= ... show more 47.128.126.162 - - [20/May/2024:10:23:19 -0400] "GET /hanson-m-153.html?filter_id=33021&page=6&sort=20a HTTP/2.0" 200 73331 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
... show less
Bad Web Bot
Steve
2024-05-19 16:31:21
(4 months ago)
Excessive crawling - not obeying robots.txt
Bad Web Bot
MAGIC
2024-05-19 05:04:04
(4 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
MAGIC
2024-05-17 06:08:25
(4 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
TPI-Abuse
2024-05-15 09:26:07
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.126.162 (ec2-47-128-126-162.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.126.162 (ec2-47-128-126-162.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 15 05:26:01.997943 2024] [security2:error] [pid 15260] [client 47.128.126.162:58076] [client 47.128.126.162] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||comics.flyingdodostudio.com|F|2"] [data ".tumblr.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "comics.flyingdodostudio.com"] [uri "/hardlykind/inkyphalangies.tumblr.com"] [unique_id "ZkR_qUg2YU3HhAEMYHHedgAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TheMadBeaker
2024-05-11 16:36:01
(4 months ago)
Fail2Ban Ban Triggered
HTTP Exploit Attempt
Brute-Force
Web App Attack
Thaliruth
2024-05-11 06:23:12
(4 months ago)
47.128.126.162 - - [11/May/2024:08:23:11 +0200] "GET /hdro-patch-notes/333-release-notes-update-2-pa ... show more 47.128.126.162 - - [11/May/2024:08:23:11 +0200] "GET /hdro-patch-notes/333-release-notes-update-2-patch-1.html HTTP/1.0" 410 1766 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
... show less
Bad Web Bot