|
π―π΅
164.52.24.188
|
|
[Sun Sep 08 04:57:43.109162 2024] [:error] [pid 207912:tid 208010] [client 164.52.24.188:47877] [cli ...
show more
[Sun Sep 08 04:57:43.109162 2024] [:error] [pid 207912:tid 208010] [client 164.52.24.188:47877] [client 164.52.24.188] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/"] [unique_id "Zt0Spz64SrsacwPdPG9o5wAAAAc"]
[Sun Sep 08 04:57:46.387196 2024] [:error] [pid 207912:tid 208007] [client 164.52.24.188:47877] [client 164.52.24.188] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "
...
show less
|
Hacking
Web App Attack
|
|
πΊπΈ
68.183.116.107
|
|
[Sun Sep 08 02:22:49.680164 2024] [proxy_fcgi:error] [pid 208131:tid 208167] [client 68.183.116.107: ...
show more
[Sun Sep 08 02:22:49.680164 2024] [proxy_fcgi:error] [pid 208131:tid 208167] [client 68.183.116.107:53528] AH01071: Got error 'Primary script unknown'
[Sun Sep 08 02:22:53.850940 2024] [proxy_fcgi:error] [pid 208131:tid 208168] [client 68.183.116.107:44986] AH01071: Got error 'Primary script unknown'
[Sun Sep 08 02:22:56.491727 2024] [proxy_fcgi:error] [pid 207912:tid 207993] [client 68.183.116.107:44994] AH01071: Got error 'Primary script unknown'
...
show less
|
Hacking
Web App Attack
|
|
π¬π§
78.153.140.179
|
|
[Sat Sep 07 22:28:08.764982 2024] [:error] [pid 7298:tid 7440] [client 78.153.140.179:32924] [client ...
show more
[Sat Sep 07 22:28:08.764982 2024] [:error] [pid 7298:tid 7440] [client 78.153.140.179:32924] [client 78.153.140.179] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/.env"] [unique_id "Zty3VtygNdHchHTjV3OFxwAAAAo"]
[Sat Sep 07 22:28:09.413390 2024] [:error] [pid 7298:tid 7455] [client 78.153.140.179:42432] [client 78.153.140.179] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "
...
show less
|
Hacking
Web App Attack
|
|
π·π΄
45.148.10.242
|
|
[Sat Sep 07 20:21:36.049363 2024] [cgid:error] [pid 74252:tid 74285] [client 45.148.10.242:60322] AH ...
show more
[Sat Sep 07 20:21:36.049363 2024] [cgid:error] [pid 74252:tid 74285] [client 45.148.10.242:60322] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
[Sat Sep 07 21:11:26.804177 2024] [cgid:error] [pid 7298:tid 7407] [client 45.148.10.242:40952] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
...
show less
|
Hacking
Web App Attack
|
|
π·π΄
45.148.10.242
|
|
[Fri Sep 06 19:27:45.934934 2024] [cgid:error] [pid 1202396:tid 1202487] [client 45.148.10.242:47432 ...
show more
[Fri Sep 06 19:27:45.934934 2024] [cgid:error] [pid 1202396:tid 1202487] [client 45.148.10.242:47432] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
[Fri Sep 06 20:15:10.752113 2024] [cgid:error] [pid 1202396:tid 1202531] [client 45.148.10.242:36766] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
...
show less
|
Hacking
Web App Attack
|
|
π·π΄
45.148.10.242
|
|
[Thu Sep 05 13:56:22.066934 2024] [cgid:error] [pid 1204411:tid 1204461] [client 45.148.10.242:36494 ...
show more
[Thu Sep 05 13:56:22.066934 2024] [cgid:error] [pid 1204411:tid 1204461] [client 45.148.10.242:36494] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
[Thu Sep 05 14:21:12.893897 2024] [cgid:error] [pid 1202396:tid 1202505] [client 45.148.10.242:54936] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
...
show less
|
Hacking
Web App Attack
|
|
π·π΄
45.148.10.247
|
|
[Wed Sep 04 18:49:55.707277 2024] [cgid:error] [pid 1202396:tid 1202538] [client 45.148.10.247:38126 ...
show more
[Wed Sep 04 18:49:55.707277 2024] [cgid:error] [pid 1202396:tid 1202538] [client 45.148.10.247:38126] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
[Wed Sep 04 19:34:09.267663 2024] [cgid:error] [pid 1202396:tid 1202519] [client 45.148.10.247:36038] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
...
show less
|
Hacking
Web App Attack
|
|
π¨π
179.43.133.242
|
|
[Wed Sep 04 16:59:33.430066 2024] [proxy_fcgi:error] [pid 1202396:tid 1202540] [client 179.43.133.24 ...
show more
[Wed Sep 04 16:59:33.430066 2024] [proxy_fcgi:error] [pid 1202396:tid 1202540] [client 179.43.133.242:42764] AH01071: Got error 'Primary script unknown'
[Wed Sep 04 16:59:33.871899 2024] [proxy_fcgi:error] [pid 1202396:tid 1202538] [client 179.43.133.242:42764] AH01071: Got error 'Primary script unknown'
[Wed Sep 04 16:59:34.205662 2024] [proxy_fcgi:error] [pid 1202396:tid 1202542] [client 179.43.133.242:42764] AH01071: Got error 'Primary script unknown'
...
show less
|
Hacking
Web App Attack
|
|
π©πͺ
95.142.121.64
|
|
[Wed Sep 04 01:03:07.643694 2024] [:error] [pid 1202395:tid 1202500] [client 95.142.121.64:1182] [cl ...
show more
[Wed Sep 04 01:03:07.643694 2024] [:error] [pid 1202395:tid 1202500] [client 95.142.121.64:1182] [client 95.142.121.64] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "webmin.chrypox.be"] [uri "/.env"] [unique_id "ZteVq7OSWEKSbKwMghtrNQAAABI"]
[Wed Sep 04 01:03:07.898828 2024] [:error] [pid 1202395:tid 1202506] [client 95.142.121.64:1019] [client 95.142.121.64] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [s
...
show less
|
Hacking
Web App Attack
|
|
πΊπΈ
138.197.97.156
|
|
[Tue Sep 03 14:24:47.387556 2024] [proxy_fcgi:error] [pid 1202396:tid 1202529] [client 138.197.97.15 ...
show more
[Tue Sep 03 14:24:47.387556 2024] [proxy_fcgi:error] [pid 1202396:tid 1202529] [client 138.197.97.156:42636] AH01071: Got error 'Primary script unknown'
[Tue Sep 03 14:24:50.768992 2024] [proxy_fcgi:error] [pid 1202397:tid 1202568] [client 138.197.97.156:42678] AH01071: Got error 'Primary script unknown'
[Tue Sep 03 14:24:55.610952 2024] [proxy_fcgi:error] [pid 1202395:tid 1202458] [client 138.197.97.156:35406] AH01071: Got error 'Primary script unknown'
...
show less
|
Hacking
Web App Attack
|
|
π¬π§
78.153.140.151
|
|
[Mon Sep 02 22:15:48.347664 2024] [:error] [pid 1202396:tid 1202538] [client 78.153.140.151:42206] [ ...
show more
[Mon Sep 02 22:15:48.347664 2024] [:error] [pid 1202396:tid 1202538] [client 78.153.140.151:42206] [client 78.153.140.151] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/.env"] [unique_id "ZtYc9FfuDZnTndvmDhR6kQAAAFI"]
[Mon Sep 02 22:15:49.779863 2024] [:error] [pid 1202396:tid 1202482] [client 78.153.140.151:38588] [client 78.153.140.151] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 13)"
...
show less
|
Hacking
Web App Attack
|
|
π·π΄
45.148.10.251
|
|
[Mon Sep 02 13:38:09.801198 2024] [cgid:error] [pid 1202396:tid 1202540] [client 45.148.10.251:41512 ...
show more
[Mon Sep 02 13:38:09.801198 2024] [cgid:error] [pid 1202396:tid 1202540] [client 45.148.10.251:41512] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
[Mon Sep 02 14:05:27.018329 2024] [cgid:error] [pid 1202397:tid 1202557] [client 45.148.10.251:44300] AH01264: script not found or unable to stat: /var/www/cgi-bin/luci
...
show less
|
Hacking
Web App Attack
|
|
πΊπΈ
191.96.150.90
|
|
[Mon Sep 02 06:29:05.947645 2024] [:error] [pid 1202396:tid 1202541] [client 191.96.150.90:55502] [c ...
show more
[Mon Sep 02 06:29:05.947645 2024] [:error] [pid 1202396:tid 1202541] [client 191.96.150.90:55502] [client 191.96.150.90] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/.env"] [unique_id "ZtU_EVfuDZnTndvmDhR6DwAAAFU"]
[Mon Sep 02 06:29:09.749790 2024] [:error] [pid 1202396:tid 1202498] [client 191.96.150.90:64718] [client 191.96.150.90] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [se
...
show less
|
Hacking
Web App Attack
|
|
π³π±
157.245.69.32
|
|
[Sun Sep 01 22:59:15.018322 2024] [:error] [pid 1202396:tid 1202503] [client 157.245.69.32:55264] [c ...
show more
[Sun Sep 01 22:59:15.018322 2024] [:error] [pid 1202396:tid 1202503] [client 157.245.69.32:55264] [client 157.245.69.32] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/aaa9"] [unique_id "ZtTVo1fuDZnTndvmDhR50gAAAEY"]
[Sun Sep 01 22:59:19.464266 2024] [:error] [pid 1204411:tid 1204451] [client 157.245.69.32:55280] [client 157.245.69.32] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [se
...
show less
|
Hacking
Web App Attack
|
|
π―π΅
164.52.24.188
|
|
[Sun Sep 01 01:57:19.020210 2024] [:error] [pid 1202396:tid 1202516] [client 164.52.24.188:56803] [c ...
show more
[Sun Sep 01 01:57:19.020210 2024] [:error] [pid 1202396:tid 1202516] [client 164.52.24.188:56803] [client 164.52.24.188] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/"] [unique_id "ZtOt31fuDZnTndvmDhR5HgAAAEo"]
[Sun Sep 01 01:57:22.305366 2024] [:error] [pid 1202396:tid 1202519] [client 164.52.24.188:56803] [client 164.52.24.188] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severi
...
show less
|
Hacking
Web App Attack
|
|
π²π©
85.239.33.196
|
|
[Sat Aug 31 17:05:35.439584 2024] [:error] [pid 434600:tid 434739] [client 85.239.33.196:46642] [cli ...
show more
[Sat Aug 31 17:05:35.439584 2024] [:error] [pid 434600:tid 434739] [client 85.239.33.196:46642] [client 85.239.33.196] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/"] [unique_id "ZtMxP735we2R9LPWXcKxogAAAII"]
[Sat Aug 31 17:06:37.504396 2024] [:error] [pid 437730:tid 437766] [client 85.239.33.196:42682] [client 85.239.33.196] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "
...
show less
|
Hacking
Web App Attack
|
|
πΈπ¬
128.199.148.66
|
|
[Sat Aug 31 12:16:27.204382 2024] [proxy_fcgi:error] [pid 437730:tid 437782] [client 128.199.148.66: ...
show more
[Sat Aug 31 12:16:27.204382 2024] [proxy_fcgi:error] [pid 437730:tid 437782] [client 128.199.148.66:59342] AH01071: Got error 'Primary script unknown'
[Sat Aug 31 12:16:34.396793 2024] [proxy_fcgi:error] [pid 434598:tid 434669] [client 128.199.148.66:59366] AH01071: Got error 'Primary script unknown'
[Sat Aug 31 12:16:35.700356 2024] [proxy_fcgi:error] [pid 437730:tid 437769] [client 128.199.148.66:59390] AH01071: Got error 'Primary script unknown'
...
show less
|
Hacking
Web App Attack
|
|
π¬π§
78.153.140.179
|
|
[Fri Aug 30 03:16:11.325160 2024] [:error] [pid 434598:tid 434707] [client 78.153.140.179:47296] [cl ...
show more
[Fri Aug 30 03:16:11.325160 2024] [:error] [pid 434598:tid 434707] [client 78.153.140.179:47296] [client 78.153.140.179] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/.env"] [unique_id "ZtEdW7j4eEXBWCFwEFWAIwAAAA0"]
[Fri Aug 30 03:16:11.829705 2024] [:error] [pid 434599:tid 434720] [client 78.153.140.179:60898] [client 78.153.140.179] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [se
...
show less
|
Hacking
Web App Attack
|
|
π¬π§
78.153.140.177
|
|
[Thu Aug 29 01:08:15.629306 2024] [:error] [pid 434599:tid 434748] [client 78.153.140.177:43958] [cl ...
show more
[Thu Aug 29 01:08:15.629306 2024] [:error] [pid 434599:tid 434748] [client 78.153.140.177:43958] [client 78.153.140.177] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/.env"] [unique_id "Zs-t3-SVdoSZ6UonLu_yYQAAAFM"]
[Thu Aug 29 01:08:17.108939 2024] [:error] [pid 434599:tid 434752] [client 78.153.140.177:60120] [client 78.153.140.177] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [se
...
show less
|
Hacking
Web App Attack
|
|
π«π·
86.247.124.13
|
|
[Wed Aug 28 17:04:22.415223 2024] [:error] [pid 434598:tid 434710] [client 86.247.124.13:37378] [cli ...
show more
[Wed Aug 28 17:04:22.415223 2024] [:error] [pid 434598:tid 434710] [client 86.247.124.13:37378] [client 86.247.124.13] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/robots.txt"] [unique_id "Zs88drj4eEXBWCFwEFV_sQAAAA4"]
[Wed Aug 28 17:04:22.416216 2024] [:error] [pid 434599:tid 434705] [client 86.247.124.13:37370] [client 86.247.124.13] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [
...
show less
|
Hacking
Web App Attack
|
|
π³π±
167.99.44.55
|
|
[Wed Aug 28 08:30:24.517038 2024] [proxy_fcgi:error] [pid 434598:tid 434723] [client 167.99.44.55:49 ...
show more
[Wed Aug 28 08:30:24.517038 2024] [proxy_fcgi:error] [pid 434598:tid 434723] [client 167.99.44.55:49010] AH01071: Got error 'Primary script unknown'
[Wed Aug 28 08:30:27.610853 2024] [proxy_fcgi:error] [pid 434598:tid 434677] [client 167.99.44.55:55014] AH01071: Got error 'Primary script unknown'
[Wed Aug 28 08:30:30.157305 2024] [proxy_fcgi:error] [pid 434598:tid 434689] [client 167.99.44.55:38642] AH01071: Got error 'Primary script unknown'
...
show less
|
Hacking
Web App Attack
|
|
π«π·
46.105.97.78
|
|
[Wed Aug 28 05:47:36.140513 2024] [:error] [pid 434598:tid 434689] [client 46.105.97.78:54944] [clie ...
show more
[Wed Aug 28 05:47:36.140513 2024] [:error] [pid 434598:tid 434689] [client 46.105.97.78:54944] [client 46.105.97.78] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/wp-login.php"] [unique_id "Zs6d17j4eEXBWCFwEFV_bAAAAAY"]
[Wed Aug 28 05:47:36.521794 2024] [:error] [pid 437730:tid 437776] [client 46.105.97.78:55655] [client 46.105.97.78] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [se
...
show less
|
Hacking
Web App Attack
|
|
π¬π§
78.153.140.177
|
|
[Tue Aug 27 19:17:39.409711 2024] [:error] [pid 434599:tid 434734] [client 78.153.140.177:40812] [cl ...
show more
[Tue Aug 27 19:17:39.409711 2024] [:error] [pid 434599:tid 434734] [client 78.153.140.177:40812] [client 78.153.140.177] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "62.197.121.143"] [uri "/.env"] [unique_id "Zs4KM-SVdoSZ6UonLu_xuAAAAEs"]
[Tue Aug 27 19:17:39.942677 2024] [:error] [pid 434599:tid 434746] [client 78.153.140.177:43116] [client 78.153.140.177] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [se
...
show less
|
Hacking
Web App Attack
|
|
π·π΄
45.148.10.75
|
|
[Tue Aug 27 00:20:28.979227 2024] [:error] [pid 434598:tid 434721] [client 45.148.10.75:58080] [clie ...
show more
[Tue Aug 27 00:20:28.979227 2024] [:error] [pid 434598:tid 434721] [client 45.148.10.75:58080] [client 45.148.10.75] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "mail.chrypox.be"] [uri "/.git/config"] [unique_id "Zsz_rLj4eEXBWCFwEFV-0gAAABI"]
[Tue Aug 27 00:39:42.555527 2024] [:error] [pid 434598:tid 434727] [client 45.148.10.75:48454] [client 45.148.10.75] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [se
...
show less
|
Hacking
Web App Attack
|
|
πΊπΈ
4.236.52.39
|
|
[Mon Aug 26 19:59:19.114515 2024] [:error] [pid 434600:tid 434754] [client 4.236.52.39:60653] [clien ...
show more
[Mon Aug 26 19:59:19.114515 2024] [:error] [pid 434600:tid 434754] [client 4.236.52.39:60653] [client 4.236.52.39] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "mysql.chrypox.be"] [uri "/.env"] [unique_id "ZszCd735we2R9LPWXcKw_QAAAIU"]
[Mon Aug 26 20:39:07.992883 2024] [:error] [pid 434599:tid 434729] [client 4.236.52.39:56878] [client 4.236.52.39] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "153"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CR
...
show less
|
Hacking
Web App Attack
|