Anonymous
2026-07-11 08:02:21
(4 hours ago)
PAD: No_Ref detected
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-27 20:11:58
(1 week ago)
(mod_security) mod_security (id:243420) triggered by 149.56.160.229 (crawl-149-56-160-229.dataprovid ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.160.229 (crawl-149-56-160-229.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 16:11:52.413703 2026] [security2:error] [pid 13249:tid 13249] [client 149.56.160.229:44959] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.trasimeno.ws|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.trasimeno.ws"] [uri "/privacy_utilizzo_cookie_it.html"] [unique_id "akAuiHhIDM-XKVfBaUA8ZgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 03:03:08
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 149.56.160.229 (crawl-149-56-160-229.dataprovid ...
show more
(mod_security) mod_security (id:210730) triggered by 149.56.160.229 (crawl-149-56-160-229.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 23:03:00.443613 2026] [security2:error] [pid 389:tid 389] [client 149.56.160.229:56995] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.idodat.com|F|2"] [data ".php.old"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.idodat.com"] [uri "/index.php.OLD"] [unique_id "ajC85IYqtoFuWC71FaZhDwAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
librebit
2026-05-25 05:29:50
(1 month ago)
Brute force
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-04-12 13:36:44
(2 months ago)
(mod_security) mod_security (id:243420) triggered by 149.56.160.229 (crawl-149-56-160-229.dataprovid ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.160.229 (crawl-149-56-160-229.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 12 09:36:38.658773 2026] [security2:error] [pid 2611020:tid 2611020] [client 149.56.160.229:59435] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.debosden.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.debosden.com"] [uri "/contactf/aacontact.html"] [unique_id "aduf5qvute6Y6zmdmw1OrQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Shadymint
2026-02-10 14:23:08
(5 months ago)
url probing
Web App Attack
๐จ๐ญ
myguns.ch
2026-01-09 03:57:52
(6 months ago)
Searching for vulnerable scripts: /.well-known/security.txt
Hacking
Web App Attack
๐บ๐ธ
bazter.pro
2025-12-12 14:30:53
(6 months ago)
Auto-Ban [Unknown]:
Web App Attack
๐ฌ๐ง
Mendip_Defender
2025-11-09 00:17:28
(8 months ago)
149.56.160.229 - - [09/Nov/2025:00:17:20 +0000] "GET /robots.txt HTTP/1.0" 404 4873 "-" "Mozilla/5.0 ...
show more
149.56.160.229 - - [09/Nov/2025:00:17:20 +0000] "GET /robots.txt HTTP/1.0" 404 4873 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
149.56.160.229 - - [09/Nov/2025:00:17:20 +0000] "GET /llms.txt HTTP/1.0" 404 4873 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
149.56.160.229 - - [09/Nov/2025:00:17:21 +0000] "GET /humans.txt HTTP/1.0" 404 4873 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
...
show less
Hacking
Web App Attack
๐จ๐ญ
backslash
2025-11-02 08:55:10
(8 months ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
๐ฆ๐บ
MAGIC
2025-10-28 03:25:58
(8 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-10-15 08:20:01
(8 months ago)
(mod_security) mod_security (id:243420) triggered by 149.56.160.229 (crawl-149-56-160-229.dataprovid ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.160.229 (crawl-149-56-160-229.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 15 04:19:57.541291 2025] [security2:error] [pid 23360:tid 23381] [client 149.56.160.229:60669] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.ahmedalbanna.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.ahmedalbanna.com"] [uri "/Contacts/en_contacts.html"] [unique_id "aO9ZLRIonKS44CyDBcVC9gAAAJI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
CryptoYakari
2025-09-24 16:24:37
(9 months ago)
149.56.160.229 - - [24/Sep/2025:19:24:34 +0300] "GET /sitemap.xml HTTP/1.0" 404 3184 "-" "Mozilla/5. ...
show more
149.56.160.229 - - [24/Sep/2025:19:24:34 +0300] "GET /sitemap.xml HTTP/1.0" 404 3184 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
149.56.160.229 - - [24/Sep/2025:19:24:35 +0300] "GET /llms.txt HTTP/1.0" 404 3184 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
149.56.160.229 - - [24/Sep/2025:19:24:35 +0300] "GET /security.txt HTTP/1.0" 404 3184 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
149.56.160.229 - - [24/Sep/2025:19:24:35 +0300] "GET /.well-known/security.txt HTTP/1.0" 404 3184 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
149.56.160.229 - - [24/Sep/2025:19:24:36 +0300] "GET /ads.txt HTTP/1.0" 404 3184 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
...
show less
Web Spam
Blog Spam
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-20 03:44:34
(9 months ago)
(mod_security) mod_security (id:225170) triggered by 149.56.160.229 (crawl-149-56-160-229.dataprovid ...
show more
(mod_security) mod_security (id:225170) triggered by 149.56.160.229 (crawl-149-56-160-229.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 19 23:44:28.604757 2025] [security2:error] [pid 5044:tid 5044] [client 149.56.160.229:46067] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.otraes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.otraes.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aM4jHImvDxT_2_azQ6QUAwAAAAI"], referer: https://www.otraes.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-09-15 13:36:22
(9 months ago)
Excessive crawling/scraping
Hacking
Brute-Force