๐บ๐ธ
TPI-Abuse
2026-07-05 17:49:57
(46 minutes ago)
(mod_security) mod_security (id:210730) triggered by 149.56.150.74 (crawl-149-56-150-74.dataprovider ...
show more
(mod_security) mod_security (id:210730) triggered by 149.56.150.74 (crawl-149-56-150-74.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 13:49:53.739329 2026] [security2:error] [pid 4876:tid 4876] [client 149.56.150.74:55901] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.ipostsocialmedia.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ipostsocialmedia.com"] [uri "/[email protected] "] [unique_id "akqZQf7costqasbNHyh0dQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
YF
2026-06-02 00:07:12
(1 month ago)
WordPress directory enumeration
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-13 15:28:54
(1 month ago)
(mod_security) mod_security (id:243420) triggered by 149.56.150.74 (crawl-149-56-150-74.dataprovider ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.150.74 (crawl-149-56-150-74.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 11:28:46.506485 2026] [security2:error] [pid 1005:tid 1005] [client 149.56.150.74:60601] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.debosden.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.debosden.com"] [uri "/contactf/aacontact.html"] [unique_id "agSYru1kGQy-a6ZSztPE0AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ญ๐ท
bubausluge
2026-04-04 07:02:51
(3 months ago)
Detected by Aegis SOC: Web Scanner | MITRE: T1595.001 | Fails: 3 | Period: 2026-04-03T07:18:07 to 20 ...
show more
Detected by Aegis SOC: Web Scanner | MITRE: T1595.001 | Fails: 3 | Period: 2026-04-03T07:18:07 to 2026-04-03T07:18:07
show less
Port Scan
๐ท๐บ
6o6ep
2026-04-04 03:40:57
(3 months ago)
client denied by server configuration
Port Scan
Hacking
Bad Web Bot
๐ฉ๐ช
Viveronese
2026-02-25 21:19:08
(4 months ago)
HTTP vulnerability scanning
Web App Attack
๐ฉ๐ช
SCHAPPY
2026-01-25 01:17:00
(5 months ago)
Bad bot identified by user agent
Bad Web Bot
๐บ๐ธ
LotPhantom
2026-01-17 01:23:54
(5 months ago)
149.56.150.74 - - [17/Jan/2026:01:23:14 +0000] "OPTIONS / HTTP/1.1" 404 9 "-" "Mozilla/5.0 (compatib ...
show more
149.56.150.74 - - [17/Jan/2026:01:23:14 +0000] "OPTIONS / HTTP/1.1" 404 9 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
...
show less
Web App Attack
๐ฉ๐ช
Hary74656
2025-12-08 12:18:21
(6 months ago)
[Mon Dec 08 13:18:13.312248 2025] [core:info] [pid 304125:tid 304178] [client 149.56.150.74:47863] A ...
show more
[Mon Dec 08 13:18:13.312248 2025] [core:info] [pid 304125:tid 304178] [client 149.56.150.74:47863] AH00128: File does not exist: /home/harald/www/ads.txt
...
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-11-18 09:22:00
(7 months ago)
(mod_security) mod_security (id:243420) triggered by 149.56.150.74 (crawl-149-56-150-74.dataprovider ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.150.74 (crawl-149-56-150-74.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 18 04:21:55.522212 2025] [security2:error] [pid 11712:tid 11712] [client 149.56.150.74:59441] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.kokr.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.kokr.org"] [uri "/legal.html"] [unique_id "aRw6s5QS8c0bMSCkNlQ_SwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2025-11-01 22:15:11
(8 months ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
๐ฉ๐ช
Hary74656
2025-10-31 09:16:54
(8 months ago)
[Fri Oct 31 10:16:46.528656 2025] [core:info] [pid 456906:tid 456951] [client 149.56.150.74:32973] A ...
show more
[Fri Oct 31 10:16:46.528656 2025] [core:info] [pid 456906:tid 456951] [client 149.56.150.74:32973] AH00128: File does not exist: /home/harald/www/ads.txt
...
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-10-17 17:35:30
(8 months ago)
(mod_security) mod_security (id:243420) triggered by 149.56.150.74 (crawl-149-56-150-74.dataprovider ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.150.74 (crawl-149-56-150-74.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 17 13:35:23.210025 2025] [security2:error] [pid 6534:tid 6534] [client 149.56.150.74:34603] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.30daysout.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.30daysout.com"] [uri "/links/index.html"] [unique_id "aPJ-W9U8WK00N57SCw1Q1AAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
kranem
2025-10-03 12:00:37
(9 months ago)
Triggered Cloudflare WAF from CA.
Action taken: BLOCK
ASN: 16276 (OVH)
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF from CA.
Action taken: BLOCK
ASN: 16276 (OVH)
Protocol: HTTP/1.1 (GET method)
Endpoint: /
Timestamp: 2025-10-03T09:36:57Z
User-Agent: Mozilla/5.0 (compatible; Dataprovider.com)
show less
Bad Web Bot
Anonymous
2025-09-18 12:47:14
(9 months ago)
Excessive crawling/scraping
Hacking
Brute-Force