๐บ๐ธ
TPI-Abuse
2025-12-05 04:10:35
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:10:27.783990 2025] [security2:error] [pid 11803:tid 11803] [client 2a00:1b88:4::4:49816] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||zoesaadeh.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "zoesaadeh.com"] [uri "/eh_com.sql"] [unique_id "aTJbM0hkfHILpRxRy4ypLQAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 02:11:51
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:11:45.406345 2025] [security2:error] [pid 26288:tid 26288] [client 2a00:1b88:4::4:47572] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||niseigroup.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "niseigroup.com"] [uri "/roup_com.sql"] [unique_id "aTI_YUFpTFaVSKz3qlkzYwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-04 20:13:45
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 15:13:40.776922 2025] [security2:error] [pid 15052:tid 15052] [client 2a00:1b88:4::4:45054] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||jamisongreen.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jamisongreen.com"] [uri "/een_com.sql"] [unique_id "aTHrdEEHD2DPzs798Af50QAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-04 16:17:24
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 11:17:15.514790 2025] [security2:error] [pid 10537:tid 10537] [client 2a00:1b88:4::4:34166] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||furbabieslivesmatter.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "furbabieslivesmatter.com"] [uri "/fu.sql"] [unique_id "aTG0C7rHcBXiPQQcJln2lQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-04 14:32:00
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 09:31:55.581199 2025] [security2:error] [pid 30144:tid 30257] [client 2a00:1b88:4::4:33902] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||captechinc.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "captechinc.com"] [uri "/captech.sql"] [unique_id "aTGbW5Fxl8dX57mMvLxf1AAAAMw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-04 09:33:22
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 04:33:14.825802 2025] [security2:error] [pid 13469:tid 13469] [client 2a00:1b88:4::4:44502] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||michaelthompson.biz|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "michaelthompson.biz"] [uri "/hompson.sql"] [unique_id "aTFVWrXUWCRIYuOz1aVllgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-03 12:18:35
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 07:18:28.663985 2025] [security2:error] [pid 9336:tid 9357] [client 2a00:1b88:4::4:41408] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||cliffwheeler.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cliffwheeler.com"] [uri "/cl.sql"] [unique_id "aTAqlJyiSQDz10QUpdcl_AAAAFE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-02 15:17:52
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 10:17:49.482294 2025] [security2:error] [pid 11802:tid 11802] [client 2a00:1b88:4::4:57706] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||engineeringarts.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "engineeringarts.com"] [uri "/arts_com.sql"] [unique_id "aS8DHSEDJ1y9isdfb16qYgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-02 14:53:38
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 09:53:30.938965 2025] [security2:error] [pid 8661:tid 8661] [client 2a00:1b88:4::4:43614] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||modestosoftwater.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "modestosoftwater.com"] [uri "/modest.sql"] [unique_id "aS79asfTsZUDwNscWk7fBwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-30 13:46:41
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 30 08:46:36.683688 2025] [security2:error] [pid 6578:tid 6578] [client 2a00:1b88:4::4:37564] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||spacebooger.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "spacebooger.com"] [uri "/spacebooge.sql"] [unique_id "aSxKvFEPsxdgRrVuqWEjDQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-23 16:50:17
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 11:50:11.684944 2025] [security2:error] [pid 7893:tid 7893] [client 2a00:1b88:4::4:39458] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.applemaccomputerconsulting.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.applemaccomputerconsulting.com"] [uri "/backup_wp.sql"] [unique_id "aSM7QxkDekuQuxqgeybZeQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-18 08:31:02
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 18 03:30:57.218732 2025] [security2:error] [pid 23540:tid 23540] [client 2a00:1b88:4::4:45810] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.starvationacres.us|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.starvationacres.us"] [uri "/nacres.sql"] [unique_id "aRwuwS-M_hruNMSwG49XsgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-17 04:06:13
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 23:06:06.289764 2025] [security2:error] [pid 2389:tid 2389] [client 2a00:1b88:4::4:43604] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||lowkeytiki.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lowkeytiki.com"] [uri "/keytiki.sql"] [unique_id "aRqfLhz8Ohb7f6n6oIZREwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-14 20:48:48
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 sec ...
show more
(mod_security) mod_security (id:210730) triggered by 2a00:1b88:4::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 14 15:48:40.873644 2025] [security2:error] [pid 9806:tid 9827] [client 2a00:1b88:4::4:45444] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ward-bergerhouse.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ward-bergerhouse.org"] [uri "/ward-bergerh.sql"] [unique_id "aReVqBDprAfVmM8l75XQyQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
R.G.
2025-11-01 14:59:14
(8 months ago)
2a00:1b88:4::4 (Unknown), 10 distributed directadmin attacks on account [cloacked] in the last 900 s ...
show more
2a00:1b88:4::4 (Unknown), 10 distributed directadmin attacks on account [cloacked] in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Nov 01 15:48:33 user denied: wordpress (mysql-denied) from 2605:6400:30:f414:bf7c:cd6f:39bc:c682
show less
Brute-Force