πΊπΈ
TPI-Abuse
2026-05-28 18:54:27
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 14:54:23.212453 2026] [security2:error] [pid 16958:tid 16958] [client 2001:41d0:305:2100::4e79:34572] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||khaoula.com|F|2"] [data ".monmaghreb.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "khaoula.com"] [uri "/sante.monmaghreb.com"] [unique_id "ahiPX9DBiokNMyzx6r-87QAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-28 13:42:31
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 09:42:24.622963 2026] [security2:error] [pid 9225:tid 9225] [client 2001:41d0:305:2100::4e79:51834] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||gsrsv.org|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gsrsv.org"] [uri "/springtimeinc.com"] [unique_id "ahhGQLenn35KM2ZQLVh1dAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-27 23:10:20
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 19:10:16.569841 2026] [security2:error] [pid 458:tid 458] [client 2001:41d0:305:2100::4e79:48896] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.med-engineering.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.med-engineering.com"] [uri "/aq.com"] [unique_id "ahd52CPFBDVkq8dz12zcmwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-18 18:27:54
(1 month ago)
(mod_security) mod_security (id:210381) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210381) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 14:27:47.669240 2026] [security2:error] [pid 13515:tid 13539] [client 2001:41d0:305:2100::4e79:57354] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||www.mentzlaw.com|F|4"] [data "REQUEST_URI=/lawyerinlouisiana/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.mentzlaw.com"] [uri "/lawyerinlouisiana/%url%"] [unique_id "agtaI7MsBHKtTZf-QVf0GQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
webgobe
2026-05-18 17:52:59
(1 month ago)
wew-Joomla User : try to access forms...
Hacking
πΊπΈ
TPI-Abuse
2026-05-16 09:15:42
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 05:15:36.675322 2026] [security2:error] [pid 31382:tid 31382] [client 2001:41d0:305:2100::4e79:41498] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||noisepie.com|F|2"] [data ".bat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "noisepie.com"] [uri "/video/tcow96.bat"] [unique_id "agg1uPNDrYryIKFY-mcotAAAAC8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-15 06:56:20
(1 month ago)
(mod_security) mod_security (id:240950) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:240950) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 02:56:11.855683 2026] [security2:error] [pid 22166:tid 22166] [client 2001:41d0:305:2100::4e79:44020] ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)||goldengatecorgis.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "goldengatecorgis.org"] [uri "/"] [unique_id "agbDi4Nl9Ese-OhvCfn8XgAAADY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-14 19:55:51
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 15:55:47.245030 2026] [security2:error] [pid 19596:tid 19596] [client 2001:41d0:305:2100::4e79:55720] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.phantomquailkennel.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.phantomquailkennel.com"] [uri "/[email protected] "] [unique_id "agYow_VWY2OzJiZCH_t-FwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-12 02:13:40
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 22:13:34.421809 2026] [security2:error] [pid 16350:tid 16350] [client 2001:41d0:305:2100::4e79:35824] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.baliaccommodationpadangpadang.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.baliaccommodationpadangpadang.com"] [uri "/location/[email protected] "] [unique_id "agKMzgyPPUbKJn4KAJmvogAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-12 01:40:36
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 21:40:31.575170 2026] [security2:error] [pid 19785:tid 19785] [client 2001:41d0:305:2100::4e79:57570] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.cajunpicasso.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.cajunpicasso.com"] [uri "/roslyns-choice-2/[email protected] "] [unique_id "agKFD7RqPL7p9OfsG4sApAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
HandyTreff.de
2026-04-14 20:28:40
(2 months ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -67.873 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -67.873 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Sa
show less
Web App Attack
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-04-13 07:50:29
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 03:50:20.889686 2026] [security2:error] [pid 159205:tid 159220] [client 2001:41d0:305:2100::4e79:46446] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||digital4z.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "digital4z.com"] [uri "/wp-content/plugins/jetpack/modules/infinite-scroll/WS_FTP.LOG"] [unique_id "adygPCZ1pseViMtRH9Ij1wAAAI0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-11 14:49:10
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 10:49:03.892573 2026] [security2:error] [pid 204166:tid 204166] [client 2001:41d0:305:2100::4e79:54448] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.nancyscafeandcatering.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nancyscafeandcatering.com"] [uri "/wp-content/themes/eatery/rawmpeg.com"] [unique_id "adpfXz5w47Va-GTGsnaapAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
Anytech
2026-04-01 08:17:57
(3 months ago)
Blocked by Conn-Monitor: Automated bot activity
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-25 05:26:52
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 00:26:46.435929 2026] [security2:error] [pid 15904:tid 15904] [client 2001:41d0:305:2100::4e79:44538] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.spacebooger.com|F|2"] [data ".blogspot.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.spacebooger.com"] [uri "/2009/10/09/friday-night-fightsfeet-of-fury-round-5/stars-and-garters.blogspot.com"] [unique_id "aZ6IFp9UPwPDi_0R_QMkvwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack