๐บ๐ธ
TPI-Abuse
2026-07-03 11:40:31
(1 hour ago)
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 07:40:26.049596 2026] [security2:error] [pid 16533:tid 16533] [client 172.69.130.209:11466] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.j3pr.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.j3pr.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "akefqunijhw6v9zUG4JvVAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 23:32:46
(13 hours ago)
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 19:32:42.602904 2026] [security2:error] [pid 5434:tid 5434] [client 172.69.130.209:9490] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.fadcometal.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.fadcometal.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "akb1Gp_vU7VPDW9zTukwnwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-02 06:15:00
(1 day ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 05:11:46
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 01:11:42.111104 2026] [security2:error] [pid 14747:tid 14747] [client 172.69.130.209:12157] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.g-h2o.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.g-h2o.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "akNQDlb2GSc2j5uFnm3U8gAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-27 01:20:41
(6 days ago)
[Sat Jun 27 03:20:40.442315 2026] [authz_core:error] [pid 18746] [client 172.69.130.209:12892] AH016 ...
show more
[Sat Jun 27 03:20:40.442315 2026] [authz_core:error] [pid 18746] [client 172.69.130.209:12892] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sat Jun 27 03:20:40.575648 2026] [authz_core:error] [pid 18746] [client 172.69.130.209:12892] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sat Jun 27 03:20:40.702462 2026] [authz_core:error] [pid 18746] [client 172.69.130.209:12892] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
Anonymous
2026-06-25 21:39:42
(1 week ago)
[Thu Jun 25 23:39:40.309036 2026] [authz_core:error] [pid 24436] [client 172.69.130.209:10569] AH016 ...
show more
[Thu Jun 25 23:39:40.309036 2026] [authz_core:error] [pid 24436] [client 172.69.130.209:10569] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Thu Jun 25 23:39:40.952086 2026] [authz_core:error] [pid 24436] [client 172.69.130.209:10569] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Thu Jun 25 23:39:41.207047 2026] [authz_core:error] [pid 24436] [client 172.69.130.209:10569] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 14:57:36
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 10:57:28.953588 2026] [security2:error] [pid 26154:tid 26154] [client 172.69.130.209:9311] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tla.diegolaje.com"] [uri "/.env.production.local"] [unique_id "ajlNWCb9xym2zaCuIE8U8wAAAAA"], referer: https://www.google.com/search?q=www.tla.diegolaje.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-21 22:00:30
(1 week ago)
Auto-ban: >3000 req/min op 2026-06-21
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-21 01:21:15
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 21:21:08.429787 2026] [security2:error] [pid 1079:tid 1079] [client 172.69.130.209:9675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bosch.pamplonaserviciotecnico.com"] [uri "/.git/config"] [unique_id "ajc8hIC2d1Cyjl_WK3vn1wAAAAI"], referer: https://www.google.com/search?q=www.bosch.pamplonaserviciotecnico.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 05:58:39
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 01:58:22.730753 2026] [security2:error] [pid 5609:tid 5609] [client 172.69.130.209:25362] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "christianconsulting.hendersonhomes.com"] [uri "/.env.dist"] [unique_id "ajYr_l2zYdC6c818SzkVTQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
pierredh
2026-06-19 19:02:36
(1 week ago)
SQL injection:/newsites/free/pierre/search/searchSVI.php?continentName=EU&country=276+&enddate=&endd ...
show more
SQL injection:/newsites/free/pierre/search/searchSVI.php?continentName=EU&country=276+&enddate=&enddate=..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd&from=&page=1&prj_typ=all&searchSubmission=Recherche&startdate=
show less
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-06-12 02:20:00
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 22:19:55.037954 2026] [security2:error] [pid 29251:tid 29251] [client 172.69.130.209:12139] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.jmwilliamsrealty.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.jmwilliamsrealty.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "aitsyzisQHGBBVVc8J23LQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 22:05:10
(4 weeks ago)
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.130.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 18:05:03.793865 2026] [security2:error] [pid 8382:tid 8382] [client 172.69.130.209:10280] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.viacarduccichicago.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.viacarduccichicago.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "aiH2j3AqiNnWG5-3WI3K9QAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-04 17:31:14
(4 weeks ago)
[Thu Jun 04 19:31:11.780609 2026] [authz_core:error] [pid 22882] [client 172.69.130.209:10263] AH016 ...
show more
[Thu Jun 04 19:31:11.780609 2026] [authz_core:error] [pid 22882] [client 172.69.130.209:10263] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Thu Jun 04 19:31:12.566822 2026] [authz_core:error] [pid 22882] [client 172.69.130.209:10263] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Thu Jun 04 19:31:13.173657 2026] [authz_core:error] [pid 22882] [client 172.69.130.209:10263] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
Anonymous
2026-05-28 08:00:45
(1 month ago)
[Thu May 28 10:00:44.869302 2026] [authz_core:error] [pid 9328] [client 172.69.130.209:10419] AH0163 ...
show more
[Thu May 28 10:00:44.869302 2026] [authz_core:error] [pid 9328] [client 172.69.130.209:10419] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Thu May 28 10:00:44.989007 2026] [authz_core:error] [pid 9328] [client 172.69.130.209:10419] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Thu May 28 10:00:45.109651 2026] [authz_core:error] [pid 9328] [client 172.69.130.209:10419] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack