TPI-Abuse
2024-09-01 22:56:05
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 01 18:55:57.243077 2024] [security2:error] [pid 3698986:tid 3698997] [client 79.124.8.241:52040] [client 79.124.8.241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.rpiusa.net"] [uri "/wp-config.php.orig"] [unique_id "ZtTw_caC-vXisGVPIh7mhgAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
MAGIC
2024-09-01 15:03:56
(2 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
MAGIC
2024-08-30 16:17:44
(2 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
niceshops.com
2024-08-30 12:19:26
(2 months ago)
Large amount of http-requests in short time ([30/Aug/2024:14:13:41.839] )
Bad Web Bot
Anonymous
2024-08-30 04:48:51
(2 months ago)
ALTB WEBFORM SPAM 79.124.8.241 (79.124.8.241)
Web Spam
Study Bitcoin 🤗
2024-08-28 06:52:15
(2 months ago)
Fail2Ban62
Brute-Force
Anonymous
2024-08-28 05:42:22
(2 months ago)
Ports: *; Direction: 0; Trigger: CT_LIMIT
Brute-Force
SSH
cmbplf
2024-08-27 17:35:23
(2 months ago)
1.120 POST requests to */wp-login.php
Brute-Force
Bad Web Bot
mescribano
2024-08-26 14:10:28
(2 months ago)
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-26 11:56:05
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 26 07:56:00.309221 2024] [security2:error] [pid 20383:tid 20383] [client 79.124.8.241:41916] [client 79.124.8.241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "esqchalo.com"] [uri "/wp-config.phpb"] [unique_id "ZsxtUJr_LWFX971CTwHaNgAAABg"] show less
Brute-Force
Bad Web Bot
Web App Attack
oncord
2024-08-25 23:04:22
(2 months ago)
Form spam
Web Spam
TPI-Abuse
2024-08-25 11:29:07
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 25 07:28:58.242300 2024] [security2:error] [pid 15905:tid 15905] [client 79.124.8.241:42362] [client 79.124.8.241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.kathydumesnilart.com"] [uri "/.git/config"] [unique_id "ZssVentHluR80yUjgw85xgAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
ozisp.com.au
2024-08-24 13:05:02
(2 months ago)
BG__<33>1724504701 [1:2522114:5626] ET TOR Known Tor Relay/Router (Not Exit) Node TCP Traffic group ... show more BG__<33>1724504701 [1:2522114:5626] ET TOR Known Tor Relay/Router (Not Exit) Node TCP Traffic group 115 [Classification: Misc Attack] [Priority: 2] {TCP} 79.124.8.241:36512 show less
Open Proxy
TPI-Abuse
2024-08-22 02:37:53
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 21 22:37:47.775159 2024] [security2:error] [pid 13694:tid 13694] [client 79.124.8.241:42640] [client 79.124.8.241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fgrotary.org"] [uri "/wp-config.phpold"] [unique_id "ZsakewSIjiC1oPkNHlVR9QAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-20 23:20:14
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 79.124.8.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 20 19:20:07.418526 2024] [security2:error] [pid 28990:tid 28990] [client 79.124.8.241:34784] [client 79.124.8.241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kerrywood.com"] [uri "/wp-config.php~"] [unique_id "ZsUkp-6EpNyIkLmOvWR5iwAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack