TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports ... show more(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 10 23:13:30.427866 2024] [security2:error] [pid 9898:tid 9898] [client 85.203.47.13:60599] [client 85.203.47.13] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||teenybikinigirls.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "teenybikinigirls.com"] [uri "/backup.sql"] [unique_id "ZrgsWjh-wX9vqtNHSg5SCAAAABE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
unifr
|
|
Unauthorized IMAP connection attempt
|
Brute-Force
|
|
10dencehispahard SL
|
|
Unauthorized login attempts [ accesslogs]
|
Brute-Force
Brute-Force
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports ... show more(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 19 16:17:50.811873 2024] [security2:error] [pid 3188090] [client 85.203.47.13:3935] [client 85.203.47.13] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||csgohub.gg|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "csgohub.gg"] [uri "/backups/backup.sql"] [unique_id "ZkpebheDnBQ6zK4GTYiOKQAAAAQ"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
hbrks
|
|
HEAD http://ncs.guru/back/backup.tar * statusCode: 503 *
|
Web Spam
Hacking
Bad Web Bot
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports ... show more(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 17 02:08:11.740989 2024] [security2:error] [pid 10420] [client 85.203.47.13:46559] [client 85.203.47.13] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mapleleaf-marketing.com|F|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mapleleaf-marketing.com"] [uri "/wallet.dat"] [unique_id "Zkb0S76SPxX8reHFtwXGugAAABM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
oncord
|
|
Form spam
|
Web Spam
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports ... show more(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 01 00:32:24.647015 2024] [security2:error] [pid 7009] [client 85.203.47.13:46195] [client 85.203.47.13] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||olimpiacerda.com|F|2"] [data ".com.sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "olimpiacerda.com"] [uri "/backup/olimpiacerda.com.sql"] [unique_id "Zgo42HhSju3yj85VOMZn1gAAAAE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports ... show more(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 23 03:19:44.495197 2024] [security2:error] [pid 22693] [client 85.203.47.13:52227] [client 85.203.47.13] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||crypto-stamps.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "crypto-stamps.com"] [uri "/backups/mysql.sql"] [unique_id "Zf6CkNTel-iNLuE9EcIiQQAAAAI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports ... show more(mod_security) mod_security (id:210730) triggered by 85.203.47.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 29 14:48:47.391910 2024] [security2:error] [pid 20171:tid 47404289668864] [client 85.203.47.13:65339] [client 85.203.47.13] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||liquido.cocoonprojects.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "liquido.cocoonprojects.com"] [uri "/bak/mysql.sql"] [unique_id "ZbgBH_Msfu_o0qNnOrSkPQAAARY"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|