Vegascosmetics
2025-02-18 22:51:22
(22 hours ago)
Kingcopy(AI-IDS): IP is wandering around the site and acting suspiciously.
Bad Web Bot
Anonymous
2025-02-18 14:10:53
(1 day ago)
few-Joomla User : try to access forms...
Hacking
Anonymous
2025-02-17 23:34:34
(1 day ago)
PSCDE WEBFORM SPAM 65.108.76.15 (cp4.seokicks.de)
Web Spam
Anonymous
2025-02-17 15:37:44
(2 days ago)
ALTB WEBFORM SPAM 65.108.76.15 (cp4.seokicks.de)
Web Spam
mwgbr
2025-02-17 14:28:26
(2 days ago)
65.108.76.15 (FI/Finland/cp4.seokicks.de), more than 10 Apache 403 hits
Hacking
Anonymous
2025-02-14 15:05:00
(5 days ago)
Automated report (2025-02-14T15:05:00+00:00). Scraper detected.
Open Proxy
Bad Web Bot
Anonymous
2025-02-14 13:15:43
(5 days ago)
Automated report (2025-02-14T13:15:43+00:00). Scraper detected.
Open Proxy
Bad Web Bot
TPI-Abuse
2025-02-13 08:39:13
(6 days ago)
(mod_security) mod_security (id:210730) triggered by 65.108.76.15 (cp4.seokicks.de): 1 in the last 3 ... show more (mod_security) mod_security (id:210730) triggered by 65.108.76.15 (cp4.seokicks.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 13 03:39:06.535436 2025] [security2:error] [pid 1195:tid 1195] [client 65.108.76.15:39958] [client 65.108.76.15] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.sfgardening.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.sfgardening.com"] [uri "/reviews/SFGardening.Com"] [unique_id "Z62vqrHFdX8cGAKLHlHJKQAAAAs"], referer: https://www.sfgardening.com/reviews/ show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-02-13 05:35:02
(6 days ago)
(mod_security) mod_security (id:210730) triggered by 65.108.76.15 (cp4.seokicks.de): 1 in the last 3 ... show more (mod_security) mod_security (id:210730) triggered by 65.108.76.15 (cp4.seokicks.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 13 00:34:58.756348 2025] [security2:error] [pid 5233:tid 5261] [client 65.108.76.15:41824] [client 65.108.76.15] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.oldcarz.com|F|2"] [data ".daewoo.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.oldcarz.com"] [uri "/www.daewoo.com"] [unique_id "Z62Egmg6vKWKwp8PxLjkGQAAANc"], referer: http://www.oldcarz.com/auto-makers-dates.htm show less
Brute-Force
Bad Web Bot
Web App Attack
Sklurk
2025-02-11 15:13:46
(1 week ago)
Web App Attack
Web App Attack
Anonymous
2025-02-11 03:25:54
(1 week ago)
Excessive crawling/scraping
Hacking
Brute-Force
conseilgouz
2025-02-10 15:01:30
(1 week ago)
arw-Joomla User : try to access forms...
Hacking
TPI-Abuse
2025-02-10 00:04:09
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 65.108.76.15 (cp4.seokicks.de): 1 in the last 3 ... show more (mod_security) mod_security (id:210730) triggered by 65.108.76.15 (cp4.seokicks.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 09 19:04:01.637755 2025] [security2:error] [pid 7756:tid 7756] [client 65.108.76.15:52606] [client 65.108.76.15] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||kathyquan.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kathyquan.com"] [uri "/KathyQuan.com"] [unique_id "Z6lCcVb5d0ezDLPSRPiYCwAAAAI"], referer: http://kathyquan.com/ show less
Brute-Force
Bad Web Bot
Web App Attack
rtbh.com.tr
2025-02-09 20:50:01
(1 week ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
rtbh.com.tr
2025-02-08 20:50:02
(1 week ago)
list.rtbh.com.tr report: tcp/0
Brute-Force