| 196.52.84.45 |
attackbotsspam |
(From sherry@covid19protectivemasks.com) Hello there,
Right now we are going through extreme times, there have a recorded 360,000 confirmed deaths due to the viral pandemic globally. The quickest means it spreads is via your mouth as well as your hands. N-95 Masks have actually been suggested worldwide due to its reliable 3 layer protective filter.
These masks and also other clinical products have been out of supply for months in a lot of local and online stores.
My name is Sherry I am the Co-founder of https://covid19protectivemasks.com we have actually collaborated with supply store owners all around the globe to be able to bring you an online shop that's totally equipped with whatever you require to fight this pandemic.
In stock are protective masks, hand sanitizer, latex sterilie gloves & more!
The very best part is our rates are reasonable we don't believe its right to exploit individuals during their time of need!
Best Regards,
Sherry G.
covid19protectivemasks.com |
2020-08-13 01:05:37 |
| 67.219.17.189 |
attack |
Fail2Ban Ban Triggered
HTTP SQL Injection Attempt |
2020-08-13 01:04:41 |
| 217.113.18.67 |
attack |
TCP (SYN) 217.113.18.67:2621 -> port 1433, len 48 |
2020-08-13 01:07:14 |
| 178.19.250.44 |
attackbotsspam |
TCP (SYN) 178.19.250.44:50538 -> port 23, len 44 |
2020-08-13 01:13:53 |
| 67.219.23.161 |
attackbotsspam |
Fail2Ban Ban Triggered
HTTP SQL Injection Attempt |
2020-08-13 00:56:35 |
| 192.241.214.102 |
attackspambots |
GET /manager/html |
2020-08-13 00:53:45 |
| 107.175.46.17 |
attackbots |
107.175.46.17 - - [12/Aug/2020:13:39:56 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
107.175.46.17 - - [12/Aug/2020:13:39:57 +0100] "POST /wp-login.php HTTP/1.1" 200 1860 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
107.175.46.17 - - [12/Aug/2020:13:39:58 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
... |
2020-08-13 00:39:41 |
| 14.115.134.125 |
attackspambots |
firewall-block, port(s): 23/tcp |
2020-08-13 00:38:20 |
| 114.32.145.159 |
attackspam |
[N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-08-13 01:03:17 |
| 117.58.241.70 |
attackbots |
Aug 12 18:42:27 server sshd[499]: Failed password for root from 117.58.241.70 port 60104 ssh2
Aug 12 18:48:47 server sshd[9129]: Failed password for root from 117.58.241.70 port 40940 ssh2
Aug 12 18:55:05 server sshd[17600]: Failed password for root from 117.58.241.70 port 50002 ssh2 |
2020-08-13 00:58:16 |
| 178.137.187.25 |
attackbotsspam |
TCP (SYN) 178.137.187.25:52381 -> port 445, len 52 |
2020-08-13 01:13:20 |
| 142.93.226.235 |
attackbots |
142.93.226.235 - - [12/Aug/2020:16:13:23 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.93.226.235 - - [12/Aug/2020:16:13:32 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.93.226.235 - - [12/Aug/2020:16:13:34 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
... |
2020-08-13 00:34:58 |
| 118.89.229.84 |
attackspambots |
Aug 12 13:10:41 game-panel sshd[9422]: Failed password for root from 118.89.229.84 port 58154 ssh2
Aug 12 13:15:06 game-panel sshd[9582]: Failed password for root from 118.89.229.84 port 41472 ssh2 |
2020-08-13 01:03:37 |
| 106.54.56.45 |
attackspambots |
srvr2: (mod_security) mod_security (id:920350) triggered by 106.54.56.45 (CN/-/-): 1 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/12 14:40:04 [error] 3708#0: *18422 [client 106.54.56.45] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/TP/public/index.php"] [unique_id "159723600412.419418"] [ref "o0,12v40,12"], client: 106.54.56.45, [redacted] request: "GET /TP/public/index.php HTTP/1.1" [redacted] |
2020-08-13 00:32:30 |
| 118.25.152.169 |
attackbots |
web-1 [ssh] SSH Attack |
2020-08-13 00:44:05 |