Mangelot Hosting
2025-02-09 01:56:46
(1 day ago)
(BADBOT) ModSecurity BAD BOT Detected 47.128.20.214 (SG/Singapore/ec2-47-128-20-214.ap-southeast-1.c ... show more (BADBOT) ModSecurity BAD BOT Detected 47.128.20.214 (SG/Singapore/ec2-47-128-20-214.ap-southeast-1.compute.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less
Web App Attack
advena
2025-02-06 00:46:04
(4 days ago)
47.128.20.214 (AS16509 AMAZON-02) was intercepted at 2025-02-06T00:32:27Z after violating WAF direct ... show more 47.128.20.214 (AS16509 AMAZON-02) was intercepted at 2025-02-06T00:32:27Z after violating WAF directive: 874a3e315c344b1281ad4f00046aab6f. Pre-cautionary/corrective action applied: managed_challenge. show less
Web Spam
Hacking
Brute-Force
Web App Attack
MAGIC
2025-02-03 07:06:36
(1 week ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Anonymous
2025-02-01 23:05:38
(1 week ago)
Excessive crawling/scraping
Hacking
Brute-Force
backslash
2025-01-25 02:20:17
(2 weeks ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
TPI-Abuse
2025-01-24 15:47:11
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 47.128.20.214 (ec2-47-128-20-214.ap-southeast-1 ... show more (mod_security) mod_security (id:210492) triggered by 47.128.20.214 (ec2-47-128-20-214.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 24 10:47:07.228010 2025] [security2:error] [pid 27931:tid 27931] [client 47.128.20.214:64268] [client 47.128.20.214] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htpasswd" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stuartpearson.net"] [uri "/.htpasswds/"] [unique_id "Z5O1-51qI1FGT11ywcX8uQAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
MAGIC
2025-01-19 04:02:44
(3 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
TPI-Abuse
2025-01-15 15:15:48
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 47.128.20.214 (ec2-47-128-20-214.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.20.214 (ec2-47-128-20-214.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 15 10:15:41.937138 2025] [security2:error] [pid 7605:tid 7625] [client 47.128.20.214:19778] [client 47.128.20.214] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||nwnative.us|F|2"] [data ".dbf"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nwnative.us"] [uri "/Karen/Genealogy/ArnerFamily/DonArnerFilesAlreadyUploaded/ExtractedZipFile/Transfer/Arner genealogy/reunion2002/arnerdb.dbf"] [unique_id "Z4fRHRgox3ArvdS_evG3aAAAANI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-01-14 21:51:56
(3 weeks ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Charles
2025-01-11 21:29:01
(4 weeks ago)
47.128.20.214 - - [12/Jan/2025:05:28:59 +0800] "GET /robots.txt HTTP/1.1" 200 4082 "-" "Mozilla/5.0 ... show more 47.128.20.214 - - [12/Jan/2025:05:28:59 +0800] "GET /robots.txt HTTP/1.1" 200 4082 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
... show less
Web Spam
Email Spam
Brute-Force
Bad Web Bot
Web App Attack
SSH
Anonymous
2025-01-10 15:42:12
(1 month ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2025-01-06 17:46:37
(1 month ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-12-31 07:19:31
(1 month ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Steve
2024-12-30 12:03:03
(1 month ago)
Excessive crawling - not obeying robots.txt
Bad Web Bot
Anonymous
2024-12-28 07:09:48
(1 month ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH