Smel
2025-01-01 10:22:08
(1 week ago)
HTTP/80/443/8080 Unauthorized Probe, Hack -
Hacking
Web App Attack
TPI-Abuse
2024-12-12 07:37:29
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.co ... show more (mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 12 02:37:24.661169 2024] [security2:error] [pid 1315977:tid 1315977] [client 66.249.75.232:52758] [client 66.249.75.232] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.coolwebsites.org|F|2"] [data ".borrico.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.coolwebsites.org"] [uri "/www.borrico.com"] [unique_id "Z1qStCqD_uK4JSk3L5nDmAAAABE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-10 14:29:16
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.co ... show more (mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 09:29:09.612219 2024] [security2:error] [pid 16141:tid 16141] [client 66.249.75.232:46540] [client 66.249.75.232] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||martinez-morera.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "martinez-morera.com"] [uri "/Anuncios/[email protected] "] [unique_id "ZzDDNZlnnNB717ZTuEmFbAAAAA8"] show less
Brute-Force
Bad Web Bot
Web App Attack
Smel
2024-10-30 05:52:04
(2 months ago)
HTTP/80/443/8080 Unauthorized Probe, Hack -
Hacking
Web App Attack
TPI-Abuse
2024-10-09 17:52:22
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.co ... show more (mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 09 13:52:15.263105 2024] [security2:error] [pid 2958:tid 2958] [client 66.249.75.232:56685] [client 66.249.75.232] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mail.bahamascruisersguide.com|F|2"] [data ". capesantamaria.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.bahamascruisersguide.com"] [uri "/Long-Island/Long-Island/www. capesantamaria.com"] [unique_id "ZwbCzzqd-LPiI0aVHt6jbwAAAA4"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-10-03 19:14:57
(3 months ago)
66.249.75.232 - - [03/Oct/2024:16:14:55 -0300] "GET /wp-login.php HTTP/1.1" 302 5 "-" "Mozilla/5.0 ( ... show more 66.249.75.232 - - [03/Oct/2024:16:14:55 -0300] "GET /wp-login.php HTTP/1.1" 302 5 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.84 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
... show less
Web App Attack
Anonymous
2024-09-22 11:22:53
(3 months ago)
Web App Attack
Anonymous
2024-08-24 23:41:52
(4 months ago)
Web App Attack
Anonymous
2024-08-08 06:35:42
(5 months ago)
Web App Attack
TPI-Abuse
2024-08-06 14:57:26
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.co ... show more (mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 10:57:22.325502 2024] [security2:error] [pid 3199478:tid 3199478] [client 66.249.75.232:57103] [client 66.249.75.232] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||paguilar.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "paguilar.com"] [uri "/lar.sql"] [unique_id "ZrI50ovl2X4tb-rOCyw1BgAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-07-16 12:48:32
(5 months ago)
Web App Attack
TPI-Abuse
2024-07-13 15:14:41
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.co ... show more (mod_security) mod_security (id:210730) triggered by 66.249.75.232 (crawl-66-249-75-232.googlebot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 13 11:14:35.131609 2024] [security2:error] [pid 6053] [client 66.249.75.232:44961] [client 66.249.75.232] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.nrvoutdoors.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nrvoutdoors.com"] [uri "/TR/Thumbs.db"] [unique_id "ZpKZ20hEmgZaLw6g4NsE7QAAAAw"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-07-03 19:04:09
(6 months ago)
Web App Attack
Anonymous
2024-06-18 14:28:27
(6 months ago)
apache-auth
Brute-Force
Brute-Force
Web App Attack
Web App Attack
v1nc
2024-06-13 18:31:07
(6 months ago)
66.249.75.232 - - [13/Jun/2024:18:31:06 +0000] "GET /archivarix.cms.php HTTP/1.1" 404 181 "-" "Mozil ... show more 66.249.75.232 - - [13/Jun/2024:18:31:06 +0000] "GET /archivarix.cms.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.175 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
... show less
Hacking