๐บ๐ธ
TPI-Abuse
2026-06-27 21:05:18
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 17:05:13.891189 2026] [security2:error] [pid 8921:tid 8921] [client 149.22.87.51:35271] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.mitchellart.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.mitchellart.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akA7CVHc3kJcBMLyEneKOgAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 20:10:26
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 16:10:22.013650 2026] [security2:error] [pid 14225:tid 14225] [client 149.22.87.51:49995] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.yevid.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.yevid.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAuLkswvoBdyWiuvH6nTQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 19:33:10
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 15:33:05.307841 2026] [security2:error] [pid 5980:tid 5980] [client 149.22.87.51:28015] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||radar24hrs.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "radar24hrs.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAlcTM9XqdZOn2K3BP_fgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 18:00:59
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 14:00:54.254622 2026] [security2:error] [pid 12024:tid 12080] [client 149.22.87.51:22209] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.biblewriter.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.biblewriter.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAP1uJIlZXokkaBXMnwUwAAAFI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 02:55:27
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:55:20.006935 2026] [security2:error] [pid 22692:tid 22692] [client 149.22.87.51:49627] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.k2medianetworks.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.k2medianetworks.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj87mErXxy_a-GntyHiT9wAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 02:24:10
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:24:05.273166 2026] [security2:error] [pid 17411:tid 17411] [client 149.22.87.51:58731] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.porcherllc.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.porcherllc.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj80Rdck0KhxtmfDhOQgOgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 02:04:46
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:04:39.200359 2026] [security2:error] [pid 8390:tid 8390] [client 149.22.87.51:64445] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.localpetsitters.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.localpetsitters.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8vtwCfVUv0RyoImrfVqQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 01:43:55
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 21:43:52.289107 2026] [security2:error] [pid 6433:tid 6433] [client 149.22.87.51:48771] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.domainexecs.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.domainexecs.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8q2EMTYjRywAXYbS0tfQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 00:23:27
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 20:23:23.102544 2026] [security2:error] [pid 12856:tid 12856] [client 149.22.87.51:52245] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.k9team.org|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.k9team.org"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8X-_D-50nAMOAt4RUZKAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 00:06:14
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 20:06:07.748208 2026] [security2:error] [pid 15768:tid 15784] [client 149.22.87.51:39207] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||aafm.us|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "aafm.us"] [uri "/certification.html/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8T70BbLZOHxiAfnOOZ7gAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 23:32:29
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 19:32:25.557692 2026] [security2:error] [pid 5745:tid 5745] [client 149.22.87.51:56503] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.heathersheels.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.heathersheels.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8MCfHps2q0wsqa52AW8gAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 09:47:45
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 05:47:39.820111 2026] [security2:error] [pid 8997:tid 8997] [client 149.22.87.51:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ccamp.dev|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ccamp.dev"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj5KuxKzb24RTv5QTkotZwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
ByeByte API
2026-06-26 08:29:59
(2 days ago)
byebyte.space auth: GET /vendor/phpunit/phpunit/phpunit.xsd at 2026-06-26T08:29:59Z. Honeypot path h ...
show more
byebyte.space auth: GET /vendor/phpunit/phpunit/phpunit.xsd at 2026-06-26T08:29:59Z. Honeypot path hit; firewall auto-banned the IP for 24h. UA: 'Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0'. Accept-Language: 'en-US,en;q=0.5'. Accept-Encoding: 'gzip, br'. Country (CF): JP. TLS info: {"scheme":"https"}.
show less
Web App Attack
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-24 03:42:35
(4 days ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 23:42:28.183734 2026] [security2:error] [pid 7633:tid 7633] [client 149.22.87.51:26775] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.nashuaboyscouts.org|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nashuaboyscouts.org"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajtSJGsesrXHAVVzBm1YngAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 02:34:50
(4 days ago)
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): ...
show more
(mod_security) mod_security (id:210730) triggered by 149.22.87.51 (unn-149-22-87-51.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:34:43.636367 2026] [security2:error] [pid 13674:tid 13674] [client 149.22.87.51:29991] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||wildemar.info|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "wildemar.info"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajtCQ61bUafEoi5rEZ9oiAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack