TPI-Abuse
2024-10-11 15:06:21
(10 hours ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 11 11:05:23.713475 2024] [security2:error] [pid 14540:tid 14540] [client 112.193.215.130:42266] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.beachhousebooks.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.beachhousebooks.com"] [uri "/site.sql"] [unique_id "Zwk-s3jRuOf7NRWwe2pNwQAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-10-11 13:32:48
(11 hours ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 11 09:31:31.979159 2024] [security2:error] [pid 5426:tid 5426] [client 112.193.215.130:41923] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.studioarts.net|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.studioarts.net"] [uri "/com.sql"] [unique_id "Zwkos6HLqQ-ORdSyQSDQUAAAACs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-10-11 11:08:33
(14 hours ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 11 07:07:36.496485 2024] [security2:error] [pid 15911:tid 15923] [client 112.193.215.130:41562] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.financialanalyst.org|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.financialanalyst.org"] [uri "/asp.bak"] [unique_id "ZwkG-O-ryh7n2SzOSzpNTwAAAsA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-10-11 06:07:59
(19 hours ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 11 02:06:11.732642 2024] [security2:error] [pid 886:tid 886] [client 112.193.215.130:42896] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.xyncom.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.xyncom.com"] [uri "/php.bak"] [unique_id "ZwjAU2MS8sz4QxOBaYznhQAAACM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-29 00:25:18
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 28 20:24:39.849757 2024] [security2:error] [pid 10964:tid 10964] [client 112.193.215.130:23605] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.grandvistalabs.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.grandvistalabs.com"] [uri "/sales.sql"] [unique_id "ZvieR25S2IPgMlwRfpPRAQAAAA8"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-28 14:59:18
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 28 10:58:06.119276 2024] [security2:error] [pid 2548182:tid 2548182] [client 112.193.215.130:23898] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.40svocaltrio.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.40svocaltrio.com"] [uri "/2021.sql"] [unique_id "ZvgZfsnTd1peaXT8oznp_QAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-28 04:43:43
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 28 00:41:30.189147 2024] [security2:error] [pid 27057:tid 27057] [client 112.193.215.130:24274] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.thorndikestudio.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.thorndikestudio.com"] [uri "/backups.sql"] [unique_id "ZveI-v7QoDu-7SWUpdpMiwAAABg"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-27 21:01:45
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 27 17:01:05.465394 2024] [security2:error] [pid 22627:tid 22627] [client 112.193.215.130:24135] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.firstfuckingamendment.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.firstfuckingamendment.com"] [uri "/2017.sql"] [unique_id "ZvcdEUF1o8eUIF2fyDKElwAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-27 11:28:25
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 27 07:27:14.304237 2024] [security2:error] [pid 11795:tid 11812] [client 112.193.215.130:23647] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.idealcentralvac.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.idealcentralvac.com"] [uri "/wp.bak"] [unique_id "ZvaWktZxFHZ349_R0fVf5wAAAU8"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-27 05:26:16
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 27 01:25:26.041254 2024] [security2:error] [pid 26057:tid 26057] [client 112.193.215.130:23590] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.customhumanrobots.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.customhumanrobots.com"] [uri "/error_log.bak"] [unique_id "ZvZBxi-VsV1A1MoTYmw43gAAABU"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-11 23:29:57
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 11 19:28:31.451918 2024] [security2:error] [pid 3868633:tid 3868633] [client 112.193.215.130:4655] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.stkm.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.stkm.com"] [uri "/website.sql"] [unique_id "ZuInnw7LPf7jxb2xn_YJ4AAAADQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-10 22:41:28
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 10 18:39:18.907983 2024] [security2:error] [pid 10907:tid 10907] [client 112.193.215.130:4587] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.yacher.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.yacher.com"] [uri "/2025.bak"] [unique_id "ZuDKlpjed7lPLzi4FuHFCAAAABM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-08 12:45:41
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 08 08:44:31.209898 2024] [security2:error] [pid 14483:tid 14483] [client 112.193.215.130:4372] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.trailofcrumbs.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.trailofcrumbs.com"] [uri "/old.bak"] [unique_id "Zt2cLxR-R7hWtALovP_H8gAAABg"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-07 16:47:28
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 07 12:46:38.375719 2024] [security2:error] [pid 16927:tid 16927] [client 112.193.215.130:5284] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.powerkiteforum.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.powerkiteforum.com"] [uri "/2020.bak"] [unique_id "ZtyDbuKukTIl187xAwiF-wAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-26 02:46:00
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 112.193.215.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 25 22:44:17.100410 2024] [security2:error] [pid 21559:tid 21559] [client 112.193.215.130:19542] [client 112.193.215.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.iconconstructors.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.iconconstructors.com"] [uri "/www_iconconstructors_com.bak"] [unique_id "ZsvsAUo5P07Wq29i8Pj_gwAAACY"] show less
Brute-Force
Bad Web Bot
Web App Attack