Burayot
2024-12-05 08:33:51
(3 days ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 81.199.26.49 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 81.199.26.49 (US/United States/-): 1 in the last 3600 secs show less
Web App Attack
TPI-Abuse
2024-11-28 18:18:41
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 81.199.26.49 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 81.199.26.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 28 13:18:34.926778 2024] [security2:error] [pid 32473:tid 32473] [client 81.199.26.49:41147] [client 81.199.26.49] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||sailingcharterburma.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "sailingcharterburma.com"] [uri "/restore/backup.sql"] [unique_id "Z0iz-kfqdCJJjsUAWQgZNgAAABw"] show less
Brute-Force
Bad Web Bot
Web App Attack
MAGIC
2024-11-16 23:02:55
(3 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
nyuuzyou
2024-11-16 11:11:09
(3 weeks ago)
Intensive scraping: /web?s=make%20money&country=fa-fa&scraper=mojeek. User-Agent: Mozilla/5.0 (Windo ... show more Intensive scraping: /web?s=make%20money&country=fa-fa&scraper=mojeek. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51. show less
Bad Web Bot
ki3
2024-11-14 19:21:14
(3 weeks ago)
Fail2Ban: Web App Attacks and Forum Spam 81.199.26.49 1731612073.0(JST)
Web Spam
Bad Web Bot
Web App Attack
oncord
2024-11-07 17:53:47
(1 month ago)
Form spam
Web Spam
MAGIC
2024-11-06 00:15:04
(1 month ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Bedios GmbH
2024-11-02 02:17:00
(1 month ago)
Wordpress hacking attempt
Web App Attack
mnsf
2024-11-01 07:08:08
(1 month ago)
Request Overload (229)
Brute-Force
Web App Attack
Anonymous
2024-10-22 23:35:04
(1 month ago)
wordpress-trap
Web App Attack
uhlhosting
2024-10-22 19:46:31
(1 month ago)
idleslidegloves.com 81.199.26.49 - - [22/Oct/2024:21:46:30.618865 +0200] "GET / HTTP/1.1" 403 199 "- ... show more idleslidegloves.com 81.199.26.49 - - [22/Oct/2024:21:46:30.618865 +0200] "GET / HTTP/1.1" 403 199 "-" "-" ZxgBFqXJj_JoujUGOB88WgAAAA0 "-" /apache/20241022/20241022-2146/20241022-214630-ZxgBFqXJj_JoujUGOB88WgAAAA0 0 1690 md5:91484cfb240c02e439635a60aee32add
idleslidegloves.com 81.199.26.49 - - [22/Oct/2024:21:46:30.777575 +0200] "GET / HTTP/1.1" 403 199 "-" "-" ZxgBFqXJj_JoujUGOB88WwAAAAA "-" /apache/20241022/20241022-2146/20241022-214630-ZxgBFqXJj_JoujUGOB88WwAAAAA 0 1725 md5:a583de8cddf003a37ba9e5dbd956ef81
idleslidegloves.com 81.199.26.49 - - [22/Oct/2024:21:46:30.943913 +0200] "GET / HTTP/1.1" 403 199 "-" "-" ZxgBFqXJj_JoujUGOB88XQAAAAw "-" /apache/20241022/20241022-2146/20241022-214630-ZxgBFqXJj_JoujUGOB88XQAAAAw 0 1692 md5:6689cd43c3fbe192033c009751f24137
idleslidegloves.com 81.199.26.49 - - [22/Oct/2024:21:46:31.125442 +0200] "GET / HTTP/1.1" 403 199 "-" "-" ZxgBF6XJj_JoujUGOB88XgAAAAo "-" /apache/20241022/20241022-2146/20241022-214631-ZxgBF6XJj_JoujUGOB88XgAAAAo 0 1713 md5:d7
... show less
DDoS Attack
Brute-Force
Anonymous
2024-10-22 02:55:42
(1 month ago)
WordPress code include attempt:
81.199.26.49 - - [22/Oct/2024:03:55:41 +0100] "GET /wp-includ ... show more WordPress code include attempt:
81.199.26.49 - - [22/Oct/2024:03:55:41 +0100] "GET /wp-includes/rest-api/about.php HTTP/1.1" 200 234 "http://[sub domain]/wp-includes/rest-api/about.php" "Go-http-client/1.1" show less
Hacking
Web App Attack
Anonymous
2024-10-13 00:22:18
(1 month ago)
wordpress-trap
Web App Attack
Anonymous
2024-10-12 14:11:12
(1 month ago)
wordpress-trap
Web App Attack
Anonymous
2024-09-21 14:39:20
(2 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH