๐ต๐ฑ
sefinek.net
2026-06-26 00:23:06
(3 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from SE.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (G ...
show more
Triggered Cloudflare WAF (firewallCustom) from SE.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (GET) | Endpoint: /genshin-stella-mod | UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36; Manus-User/1.0 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-03 16:22:28
(1 month ago)
(mod_security) mod_security (id:210801) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210801) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 12:22:25.445385 2026] [security2:error] [pid 13623:tid 13623] [client 158.173.241.151:22839] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "17"] [id "210801"] [rev "2"] [msg "COMODO WAF: Request Indicates a Security Scanner Scanned the Site||computerizer.org|F|2"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [tag "CWAF"] [tag "Agents"] [hostname "computerizer.org"] [uri "/license.txt"] [unique_id "aiBUwdGVpG0RItO9AyYP6QAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 10:57:50
(1 month ago)
(mod_security) mod_security (id:210801) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210801) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 06:57:43.851417 2026] [security2:error] [pid 8624:tid 8624] [client 158.173.241.151:37645] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "17"] [id "210801"] [rev "2"] [msg "COMODO WAF: Request Indicates a Security Scanner Scanned the Site||instituteofscience.com|F|2"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [tag "CWAF"] [tag "Agents"] [hostname "instituteofscience.com"] [uri "/autohemo.html/license.txt"] [unique_id "aiAIp7BbI3ysCNFpOUMtygAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 03:10:06
(1 month ago)
(mod_security) mod_security (id:210801) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210801) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 23:09:57.875269 2026] [security2:error] [pid 21115:tid 21115] [client 158.173.241.151:54617] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "17"] [id "210801"] [rev "2"] [msg "COMODO WAF: Request Indicates a Security Scanner Scanned the Site||keeran.org|F|2"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [tag "CWAF"] [tag "Agents"] [hostname "keeran.org"] [uri "/license.txt"] [unique_id "ah-bBYctF4-2lRJPUd3NpQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 02:47:35
(1 month ago)
(mod_security) mod_security (id:210801) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210801) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 22:47:32.013436 2026] [security2:error] [pid 4008:tid 4008] [client 158.173.241.151:36081] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "17"] [id "210801"] [rev "2"] [msg "COMODO WAF: Request Indicates a Security Scanner Scanned the Site||unitymaine.org|F|2"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [tag "CWAF"] [tag "Agents"] [hostname "unitymaine.org"] [uri "/license.txt"] [unique_id "ah-VxGPYZE0VpqT-M7JOfgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-01 16:45:59
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 12:45:54.230324 2026] [security2:error] [pid 1162:tid 1162] [client 158.173.241.151:36781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "achildsspace.com"] [uri "/wp-config.php.bak"] [unique_id "ah23QiZkiW9TbqRwJobMmAAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-01 14:06:07
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-25 18:33:47
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 14:33:40.265057 2026] [security2:error] [pid 9551:tid 9592] [client 158.173.241.151:49359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cheqs.org"] [uri "/wp-config.php.bak"] [unique_id "ahSWBBrm8SP1Z7jrLq_KAAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-05-24 11:38:01
(1 month ago)
198 requests with url.path *.php.bak
Brute-Force
Bad Web Bot
๐บ๐ธ
spamblock
2026-05-23 19:18:44
(1 month ago)
Form submission marked as spam by user kp_5c0ee70aeaa549a688d216157c75b565 for form YZdmJRcoNelB
Port Scan
๐บ๐ธ
TPI-Abuse
2026-05-22 23:05:25
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 158.173.241.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 19:05:17.774620 2026] [security2:error] [pid 656:tid 656] [client 158.173.241.151:52915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karenbernsteinlaw.net"] [uri "/wp-config.php.bak"] [unique_id "ahDhLaKI2geT6cTF5-ouZwAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ambor
2026-05-22 05:33:33
(1 month ago)
Spam submission via ifebridge.com contact form. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64 ...
show more
Spam submission via ifebridge.com contact form. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36 Herring/95.1.8810.11. Timestamp: 2026-05-22T05:33:33.614Z
show less
Web Spam
๐บ๐ธ
nowyouknow
2026-05-21 23:56:44
(1 month ago)
(From [email protected] ) URGENT MESSAGE! YOU'VE DEVELOPED 1.3426 BTC NOW CASH OUT https:// ...
show more
(From [email protected] ) URGENT MESSAGE! YOU'VE DEVELOPED 1.3426 BTC NOW CASH OUT https://telegra.ph/You-Mined-13426-BTC-Message-ID-679455-05-04
Identifier: h9uk7l7x6x1v0q0ti2qh6n4h5y9h5l4ab8av6c9x2v7w6l3hc4kx5z1k5q5x0r7zu7tg7s0x5q6y3d5jn8ox9z5x6f9u3g6jw8bm0y0o9m1d8c6n
show less
Phishing
Web Spam
๐ซ๐ท
Nicolmn
2026-05-21 23:09:07
(1 month ago)
Web form spam ( id mmcs.l )
Web Spam
Anonymous
2026-05-21 19:57:32
(1 month ago)
SPARSDE WEBFORM SPAM 158.173.241.151 (158.173.241.151)
Web Spam