๐บ๐ธ
TPI-Abuse
2026-06-12 08:45:06
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 04:44:57.571822 2026] [security2:error] [pid 25267:tid 25267] [client 2620:101:2002:11a5:10:8:141:56:42660] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.kittysalterations.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kittysalterations.com"] [uri "/mailto:[email protected] "] [unique_id "aivHCf7THxwRjLa3QiFgcwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 20:03:23
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 16:03:18.683316 2026] [security2:error] [pid 27319:tid 27319] [client 2620:101:2002:11a5:10:8:141:56:50714] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.geriking.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.geriking.com"] [uri "/mailto:[email protected] "] [unique_id "aicgBjwyWUclM5Ugg41fBAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 09:39:30
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 05:39:23.137369 2026] [security2:error] [pid 12196:tid 12196] [client 2620:101:2002:11a5:10:8:141:56:43186] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.customwww.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.customwww.com"] [uri "/mailto:[email protected] "] [unique_id "aiKZS9s1bgiJlqmpHsjOUwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-11 03:02:47
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 23:02:39.235702 2026] [security2:error] [pid 1997:tid 1997] [client 2620:101:2002:11a5:10:8:141:56:33110] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.sfprivatechef.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.sfprivatechef.com"] [uri "/mailto:[email protected] "] [unique_id "agFGz5ilx0-dY6NCGLwX9wAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Reinhard
2026-05-09 05:40:12
(1 month ago)
Unknown activity, but too many attacks with too many users.
Hacking
๐บ๐ธ
TPI-Abuse
2026-03-14 15:03:59
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 11:03:54.680452 2026] [security2:error] [pid 5615:tid 5615] [client 2620:101:2002:11a5:10:8:141:56:34986] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.archief.org"] [uri "/bak.htaccess"] [unique_id "abV42rqMnDg_7XD0TiqixwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Bensay
2026-03-14 04:47:12
(3 months ago)
[Sat Mar 14 05:47:10.257264 2026] [authz_core:error] [pid 2430736:tid 2430833] [client 2620:101:2002 ...
show more
[Sat Mar 14 05:47:10.257264 2026] [authz_core:error] [pid 2430736:tid 2430833] [client 2620:101:2002:11a5:10:8:141:56:45916] AH01630: client denied by server configuration: /var/www/empty/
[Sat Mar 14 05:47:11.780957 2026] [authz_core:error] [pid 2430735:tid 2430824] [client 2620:101:2002:11a5:10:8:141:56:45934] AH01630: client denied by server configuration: /var/www/empty/
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
HandyTreff.de
2026-03-10 22:10:26
(3 months ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -25.169 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -25.169 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0
show less
Web App Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-03-04 22:23:01
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 04 17:22:54.521236 2026] [security2:error] [pid 2430:tid 2445] [client 2620:101:2002:11a5:10:8:141:56:52188] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.peapage.productions|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.peapage.productions"] [uri "/mailto:[email protected] "] [unique_id "aaiwvvJYdFv36A1qYvHK1wAAAIw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
i-turnradio.nl
2026-02-27 00:14:12
(4 months ago)
2026-02-27 01:14:11 (CET) ~ Blocked by abusescan risk assessment
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-14 05:09:25
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 00:09:21.303765 2026] [security2:error] [pid 18867:tid 18867] [client 2620:101:2002:11a5:10:8:141:56:53808] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.otrantocapital.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.otrantocapital.com"] [uri "/mailto:[email protected] "] [unique_id "aZADgXKQ8w1r2WIhv13MMQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-01 12:05:49
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 07:05:43.235252 2026] [security2:error] [pid 30166:tid 30166] [client 2620:101:2002:11a5:10:8:141:56:32852] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.m1graphics.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.m1graphics.com"] [uri "/mailto:[email protected] "] [unique_id "aX9Bl2FIT8Rblv_6gI7s1AAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
HandyTreff.de
2026-01-31 02:54:43
(5 months ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -19.391 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -19.391 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-21 22:38:51
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 21 17:38:45.074703 2025] [security2:error] [pid 10915:tid 10915] [client 2620:101:2002:11a5:10:8:141:56:57020] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.webersource.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.webersource.com"] [uri "/mailto:[email protected] "] [unique_id "aUh29felX9Ll8qm1a9IwOgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-18 10:14:21
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2620:101:2002:11a5:10:8:141:56 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 18 05:14:16.839895 2025] [security2:error] [pid 944:tid 944] [client 2620:101:2002:11a5:10:8:141:56:59588] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.nacuajo.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nacuajo.com"] [uri "/mailto:[email protected] "] [unique_id "aUPT-DbvKeMNIox4_8OPOwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack