๐บ๐ธ
xmission.com
2026-06-19 05:42:59
(1 week ago)
Blocked by UFW (TCP on 6881)
Source port: 54109
TTL: 39
Packet length: 52
TOS: 0x08
This report (fo ...
show more
Blocked by UFW (TCP on 6881)
Source port: 54109
TTL: 39
Packet length: 52
TOS: 0x08
This report (for 156.146.62.42) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
xmission.com
2026-04-30 10:35:08
(2 months ago)
Blocked by UFW (TCP on 1)
Source port: 62837
TTL: 40
Packet length: 64
TOS: 0x08
This report (for 1 ...
show more
Blocked by UFW (TCP on 1)
Source port: 62837
TTL: 40
Packet length: 64
TOS: 0x08
This report (for 156.146.62.42) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐ณ๐ฟ
Antinson
2026-04-08 13:36:30
(2 months ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐ณ๐ฑ
Savvii
2026-04-08 04:47:06
(2 months ago)
20 attempts against mh-misbehave-ban on redirect
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 00:30:00
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 156.146.62.42 (unn-156-146-62-42.cdn77.com): 1 ...
show more
(mod_security) mod_security (id:240000) triggered by 156.146.62.42 (unn-156-146-62-42.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 20:29:55.946933 2026] [security2:error] [pid 2039554:tid 2039554] [client 156.146.62.42:56020] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||frickandfracks.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "frickandfracks.com"] [uri "/images/stories/themes.php"] [unique_id "adWhg2txdk70r-t2jagvugAAAFM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 18:53:02
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 156.146.62.42 (unn-156-146-62-42.cdn77.com): 1 ...
show more
(mod_security) mod_security (id:240000) triggered by 156.146.62.42 (unn-156-146-62-42.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 14:52:54.894082 2026] [security2:error] [pid 1231376:tid 1231376] [client 156.146.62.42:49868] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||43cambridge.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "43cambridge.com"] [uri "/images/stories/themes.php"] [unique_id "adVShhvaN2tYPnQ_Iyrj5gAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-04-06 22:14:14
(2 months ago)
Multiple WAF Violations
Web App Attack
๐ง๐ช
cmbplf
2026-04-04 04:22:47
(2 months ago)
2.020 requests with url.path */.well-known/acme-challenge/*.php
1.461 requests with url.path */.we ...
show more
2.020 requests with url.path */.well-known/acme-challenge/*.php
1.461 requests with url.path */.well-known/pki-validation/*.php
show less
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-04 00:38:09
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 156.146.62.42 (unn-156-146-62-42.cdn77.com): 1 ...
show more
(mod_security) mod_security (id:240000) triggered by 156.146.62.42 (unn-156-146-62-42.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 20:38:03.856323 2026] [security2:error] [pid 15849:tid 15849] [client 156.146.62.42:40684] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||5starfluffandfold.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "5starfluffandfold.com"] [uri "/images/stories/themes.php"] [unique_id "adBda77XEn-_77eaj44dVQAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
oncord
2026-04-03 02:41:17
(2 months ago)
Form spam
Web Spam
Anonymous
2026-02-09 23:05:23
(4 months ago)
Unauthorized connection attempt detected in the last 24 hours
Hacking
Anonymous
2026-02-04 19:50:24
(4 months ago)
Unauthorized connection attempt detected in the last 24 hours
Hacking
Anonymous
2026-01-04 23:50:11
(5 months ago)
Unauthorized connection attempt detected in the last 24 hours
Hacking
Anonymous
2025-11-30 11:14:26
(7 months ago)
wordpress-trap
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-30 07:42:38
(7 months ago)
(mod_security) mod_security (id:240000) triggered by 156.146.62.42 (unn-156-146-62-42.cdn77.com): 1 ...
show more
(mod_security) mod_security (id:240000) triggered by 156.146.62.42 (unn-156-146-62-42.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 30 02:42:33.877841 2025] [security2:error] [pid 15682:tid 15682] [client 156.146.62.42:41890] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||orozco-wallraff.legal|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "orozco-wallraff.legal"] [uri "/images/stories/themes.php"] [unique_id "aSv1aeGCbBTuQ_YbK0yb0wAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack