๐บ๐ธ
TPI-Abuse
2026-07-02 04:38:49
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:38:20.120235 2026] [security2:error] [pid 20267:tid 20277] [client 176.53.218.171:37041] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mail.kettlehill.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.kettlehill.com"] [uri "/uploads.db"] [unique_id "akXrPN2jdzrSfO20vrEPEgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-01 02:00:49
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 22:00:44.362516 2026] [security2:error] [pid 17654:tid 17724] [client 176.53.218.171:39925] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||kettlehill.net|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.net"] [uri "/error/error.log"] [unique_id "ahznzNmdiBK8fg9Le5CaywAAAME"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-10-01 17:03:40
(9 months ago)
(mod_security) mod_security (id:210730) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 13:03:34.303225 2025] [security2:error] [pid 28909:tid 28914] [client 176.53.218.171:42565] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.kettlehill.com|F|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.com"] [uri "/config.php.bak"] [unique_id "aN1e5sqzZow6xCeNbL7n0gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
10dencehispahard SL
2025-08-18 09:40:40
(10 months ago)
WP probing for vulnerabilities
Hacking
Exploited Host
๐บ๐ธ
TPI-Abuse
2025-06-01 06:36:47
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 02:36:41.477330 2025] [security2:error] [pid 2636838:tid 2636916] [client 176.53.218.171:40927] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.kettlehill.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.com"] [uri "/php_errors.log"] [unique_id "aDv0-Tvwu3ccjH5oiKEQYgAAAIc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-30 15:52:16
(1 year ago)
(mod_security) mod_security (id:212750) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:212750) triggered by 176.53.218.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 30 11:52:12.862214 2025] [security2:error] [pid 320165:tid 320165] [client 176.53.218.171:45343] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\bon(?:abort|blur|change|click|dblclick|dragdrop|error|focus|keydown|keypress|keyup|load|mouse(?:down|move|out|over|up)|move|readystatechange|reset|resize|select|submit|unload)\\\\b[^a-zA-Z0-9_]{0,}?=" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "69"] [id "212750"] [rev "3"] [msg "COMODO WAF: XSS Attack Detected||autodiscover.nbcnewsradio.com|F|2"] [data "Matched Data: onload= found within REQUEST_URI: /control/stream?contentid='\\x5c\\x22><svg/onload=alert(/xss/)>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "autodiscover.nbcnewsradio.com"] [uri "/control/stream"] [unique_id "aDnULCh4YxhE8jvYQWDlnwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2025-03-03 08:09:51
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฆ๐บ
MAGIC
2025-02-15 17:06:26
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฆ๐บ
MAGIC
2025-01-27 10:00:54
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ซ๐ท
urmarcht
2025-01-16 03:05:27
(1 year ago)
Bot attack detected : webscan vurnerability
Web App Attack
๐ฉ๐ช
Gwyneth Llewelyn
2025-01-12 05:39:18
(1 year ago)
176.53.218.171 - - [12/Jan/2025:05:39:16 +0000] "GET /roundcube/ HTTP/2.0" 404 994 "-" "Mozilla/5.0 ...
show more
176.53.218.171 - - [12/Jan/2025:05:39:16 +0000] "GET /roundcube/ HTTP/2.0" 404 994 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36"
show less
Bad Web Bot
Anonymous
2024-12-31 00:54:49
(1 year ago)
Malicious activity detected
Hacking
Web App Attack
๐บ๐ธ
octageeks.com
2024-12-23 05:09:09
(1 year ago)
Wordpress malicious attack:[octa404]
Web App Attack
๐ฆ๐บ
MAGIC
2024-12-14 22:04:10
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฆ๐บ
MAGIC
2024-11-18 04:12:41
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot