๐บ๐ธ
TPI-Abuse
2026-06-30 01:25:06
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 21:24:56.737163 2026] [security2:error] [pid 11995:tid 11995] [client 172.69.251.168:10218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||web115.dnchosting.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "web115.dnchosting.com"] [uri "/tox.ini"] [unique_id "akMa6FAVeqmPPFpMyE4UNQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-29 02:44:45
(2 days ago)
Multiple unauthorized connection attempts
Web App Attack
๐บ๐ธ
gu-alvareza
2026-06-27 07:06:18
(4 days ago)
Web.Server.Password.File.Access
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-27 00:15:28
(5 days ago)
(mod_security) mod_security (id:210730) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 20:15:21.454849 2026] [security2:error] [pid 12863:tid 12863] [client 172.69.251.168:13169] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||silvermoonherbals.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "silvermoonherbals.com"] [uri "/tox.ini"] [unique_id "aj8WGf72kh_HaSiDC8JTeQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐พ
lns.bz
2026-06-26 06:35:11
(5 days ago)
Too many 404 requests [BY]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 05:38:43
(5 days ago)
(mod_security) mod_security (id:210730) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 01:38:37.807700 2026] [security2:error] [pid 19871:tid 19871] [client 172.69.251.168:11724] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||rimworld.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rimworld.com"] [uri "/tox.ini"] [unique_id "aj4QXTOlwWraULb6PM9t4wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
penjaga BRIN
2026-06-19 15:26:33
(1 week ago)
Suspicious malicious activity
Hacking
Anonymous
2026-06-17 08:35:20
(2 weeks ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 23:42:55
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 19:42:48.240956 2026] [security2:error] [pid 12795:tid 12795] [client 172.69.251.168:9752] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barkdull.org"] [uri "/.htaccess"] [unique_id "ajHfeMT0TBPK6MC6gUVkAgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 22:52:18
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 18:52:15.260827 2026] [security2:error] [pid 7194:tid 7194] [client 172.69.251.168:9367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "badconsultingllc.com"] [uri "/.htaccess"] [unique_id "ajHTnyHWq7kRxHaThMyJqwAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
pltcldvlpr
2026-06-16 18:22:38
(2 weeks ago)
CMS/framework probe: 172.69.251.168 - - [16/Jun/2026:20:22:37 +0200] "GET /etc/passwd HTTP/2.0" 444 ...
show more
CMS/framework probe: 172.69.251.168 - - [16/Jun/2026:20:22:37 +0200] "GET /etc/passwd HTTP/2.0" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" asn=13335 org="Cloudflare, Inc." country=TR
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-16 17:22:43
(2 weeks ago)
172.69.251.168 - - [16/Jun/2026:20:22:42 +0300] "GET /etc/passwd HTTP/1.1" 404 780 "-" "Mozilla/5.0 ...
show more
172.69.251.168 - - [16/Jun/2026:20:22:42 +0300] "GET /etc/passwd HTTP/1.1" 404 780 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.69.251.168 - - [16/Jun/2026:20:22:43 +0300] "GET /etc/passwd HTTP/1.1" 404 758 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 15:44:27
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.251.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 11:44:24.648894 2026] [security2:error] [pid 21674:tid 21674] [client 172.69.251.168:11271] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||123clearmyticket.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "123clearmyticket.com"] [uri "/tox.ini"] [unique_id "ajAd2I3jcisIGLdiGvVw5AAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-14 13:11:13
(2 weeks ago)
[ns67.kdns.gr] httpd-404: sites=kapaweb.gr; logs=/var/www/vhosts/kapaweb.gr/logs/access_ssl_log,/var ...
show more
[ns67.kdns.gr] httpd-404: sites=kapaweb.gr; logs=/var/www/vhosts/kapaweb.gr/logs/access_ssl_log,/var/www/vhosts/system/kapaweb.gr/logs/access_ssl_log; samples=/ | /login | /nginx_status
show less
Web App Attack
๐ฉ๐ช
abdubhai
2026-06-10 03:46:53
(3 weeks ago)
172.69.251.168 - - [10/Jun/2026:
...
Brute-Force