πΊπΈ
TPI-Abuse
2026-07-04 00:31:34
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 20:31:24.794958 2026] [security2:error] [pid 14887:tid 14887] [client 216.40.73.141:57121] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Lectern II/Lectern II/Savannah Whiskey/originals/Thumbs.db"] [unique_id "akhUXGOf5REwBfzAPyTJvQAAAAo"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Lectern%20II/Lectern%20II/Savannah%20Whiskey/originals/
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
FeG Deutschland
2026-07-01 03:10:27
(1 week ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27
Exploited Host
Web App Attack
π©πͺ
HandyTreff.de
2026-06-05 09:49:11
(1 month ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -55.992 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -55.992 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.1605.6
show less
Web App Attack
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-05-22 11:29:52
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 07:29:45.261746 2026] [security2:error] [pid 3826:tid 3826] [client 216.40.73.141:48199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newhopepetgrooming.com"] [uri "/wp-config.php.old"] [unique_id "ahA-KRWloXJ_JGQyahIVagAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
backslash
2026-05-22 08:57:01
(1 month ago)
block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-05-20 21:26:30
(1 month ago)
(mod_security) mod_security (id:949110) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:949110) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 17:26:26.041286 2026] [security2:error] [pid 11400:tid 11400] [client 216.40.73.141:14973] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "delcano.org"] [uri "/wp-config.php.dist"] [unique_id "ag4nAugZBAXMTyfDDeVZrgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-20 16:20:54
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 12:20:50.315225 2026] [security2:error] [pid 21798:tid 21823] [client 216.40.73.141:50455] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "datuinc.com"] [uri "/wp-config.php~"] [unique_id "ag3fYsy9mijH4ydOfZgjFQAAARU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-20 13:10:22
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.40.73.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 09:10:15.606791 2026] [security2:error] [pid 5259:tid 5259] [client 216.40.73.141:11045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "n4fh.com"] [uri "/wp-config.bak"] [unique_id "ag2yt_zUiDgfx_lXXxDQSQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
Oakley
2026-05-09 14:59:08
(2 months ago)
(mod_security) mod_security (id:900209) triggered by 216.40.73.141 (US/United States/-): 5 in the la ...
show more
(mod_security) mod_security (id:900209) triggered by 216.40.73.141 (US/United States/-): 5 in the last 900 secs
show less
Web App Attack
Hacking
π¨π
backslash
2026-04-18 14:36:10
(2 months ago)
block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE
Bad Web Bot
π«π·
AGEPCom
2026-04-15 19:09:39
(2 months ago)
Smart-Ban: IP bannie via score AbuseIPDB
Brute-Force
Web App Attack