๐บ๐ธ
TPI-Abuse
2026-01-02 23:31:24
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 18:31:16.760138 2026] [security2:error] [pid 27865:tid 27865] [client 2001:41d0:305:2100::4e79:42726] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.bahamascruisersguide.com|F|2"] [data ".blogspot.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.bahamascruisersguide.com"] [uri "/page26/snowbirdscompassrose.blogspot.com"] [unique_id "aVhVRA7S80rzUofILNqF4QAAAC4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-31 17:43:18
(6 months ago)
(mod_security) mod_security (id:240950) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:240950) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 31 12:43:11.502618 2025] [security2:error] [pid 16095:tid 16095] [client 2001:41d0:305:2100::4e79:53070] ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)||www.kentsmithfamily.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.kentsmithfamily.com"] [uri "/index.php"] [unique_id "aVVgrxVCkH_UlYqnVgPKtgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-31 04:39:01
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 23:38:54.193693 2025] [security2:error] [pid 6085:tid 6085] [client 2001:41d0:305:2100::4e79:48304] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||timberwolf-construction.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "timberwolf-construction.com"] [uri "/mail to: [email protected] "] [unique_id "aVSo3oxfhtgJWF0TFLOD7QAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-17 20:35:28
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 17 15:35:22.523834 2025] [security2:error] [pid 22302:tid 22302] [client 2001:41d0:305:2100::4e79:57888] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.motioncontrolpartners.com|F|2"] [data ".egsi.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.motioncontrolpartners.com"] [uri "/http;/www.EGSi.com"] [unique_id "aUMUCp5Sp8OEApYR72sCKAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2025-12-02 04:16:27
(7 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-11-12 03:23:39
(8 months ago)
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:210730) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 22:23:32.387902 2025] [security2:error] [pid 22729:tid 22729] [client 2001:41d0:305:2100::4e79:33548] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.efhgtc.org|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.efhgtc.org"] [uri "/[email protected] "] [unique_id "aRP9tNB-SiJ4OuRnu_ayggAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-10-17 18:54:57
(8 months ago)
(mod_security) mod_security (id:211180) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh. ...
show more
(mod_security) mod_security (id:211180) triggered by 2001:41d0:305:2100::4e79 (vps-8bd55d16.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 17 14:54:52.048674 2025] [security2:error] [pid 17052:tid 17052] [client 2001:41d0:305:2100::4e79:58974] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "50"] [id "211180"] [rev "3"] [msg "COMODO WAF: Session Fixation: SessionID Parameter Name with No Referer||www.thecrimsonpirate.com|F|2"] [data "Matched Data: phpsessid found within REQUEST_HEADERS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thecrimsonpirate.com"] [uri "/forum/index.php"] [unique_id "aPKQ_K5VcXD7BNFVwGNeAAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Reinhard
2025-09-27 11:02:11
(9 months ago)
Unknown activity, but too many attacks with too many users.
Hacking
๐ฆ๐บ
advena
2025-09-26 11:15:59
(9 months ago)
2001:41d0:305:2100::4e79 (AS16276 OVH) was intercepted at 2025-09-26T11:09:58Z after violating WAF d ...
show more
2001:41d0:305:2100::4e79 (AS16276 OVH) was intercepted at 2025-09-26T11:09:58Z after violating WAF directive: 874a3e315c344b1281ad4f00046aab6f. Pre-cautionary/corrective action applied: managed_challenge.
show less
Web Spam
Hacking
Brute-Force
Web App Attack
๐ซ๐ท
bigorre.org
2025-08-29 13:18:56
(10 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
๐ฆ๐บ
advena
2025-08-28 13:45:55
(10 months ago)
2001:41d0:305:2100::4e79 (AS16276 OVH) was intercepted at 2025-08-28T13:33:12Z after violating WAF d ...
show more
2001:41d0:305:2100::4e79 (AS16276 OVH) was intercepted at 2025-08-28T13:33:12Z after violating WAF directive: 874a3e315c344b1281ad4f00046aab6f. Pre-cautionary/corrective action applied: managed_challenge.
show less
Web Spam
Hacking
Brute-Force
Web App Attack