(mod_security) mod_security (id:210730) triggered by 168.167.81.72 (-): 1 in the last 300 secs; Port ...
show more(mod_security) mod_security (id:210730) triggered by 168.167.81.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 12:43:42.798048 2026] [security2:error] [pid 6344:tid 6344] [client 168.167.81.72:34952] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Catnapper/images/Omni/Thumbs.db"] [unique_id "ajbDPmiEYNvILPzy7FiNxQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
[osotir.org] httpd-xmlrpc-post: sites=agonistes.gr; logs=/var/log/httpd/domains/agonistes.gr.log; sa ...
show more[osotir.org] httpd-xmlrpc-post: sites=agonistes.gr; logs=/var/log/httpd/domains/agonistes.gr.log; samples=/xmlrpc.php
show less
"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ...
show more"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access"
show less
Incoming UDP Connection from 168.167.81.72 to port: 20473. Honeypot was triggered at 1/30/2023 19:57 ...
show moreIncoming UDP Connection from 168.167.81.72 to port: 20473. Honeypot was triggered at 1/30/2023 19:57:25.
show less
Port Scan
Showing 1 to
11
of 11 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ