๐บ๐ธ
TPI-Abuse
2026-06-29 08:27:43
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 3 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 04:27:37.284239 2026] [security2:error] [pid 2783:tid 2783] [client 2a01:4f8:10a:2006::2:53824] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||bahamascruisersguide.com|F|2"] [data ".blogspot.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bahamascruisersguide.com"] [uri "/Blogs-Websites/snowbirdscompassrose.blogspot.com"] [unique_id "akIsecN4D5CqBdVxvVjxEgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 23:09:24
(4 days ago)
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 3 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 19:09:17.688957 2026] [security2:error] [pid 10111:tid 10111] [client 2a01:4f8:10a:2006::2:35638] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.andrejblatnik.com|F|2"] [data ".cekape.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.andrejblatnik.com"] [uri "/www.cekape.com"] [unique_id "akGpnc7E-J6NtVuFYngoIQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
BlueWire Hosting
2026-04-21 10:02:33
(2 months ago)
Bad bot ignoring robot.txt
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-08 10:36:28
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 3 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 06:36:24.422804 2026] [security2:error] [pid 2768543:tid 2768543] [client 2a01:4f8:10a:2006::2:47844] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||garyandthegroove.com|F|2"] [data ".barebonesgrill.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "garyandthegroove.com"] [uri "/www.barebonesgrill.com"] [unique_id "adYvqM0eP3EW6gIO_CI3LAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
filstal.org
2026-03-13 09:26:15
(3 months ago)
CrowdSec-Report: crowdsecurity/http-bad-user-agent
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-25 07:26:03
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 3 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 02:25:55.420267 2026] [security2:error] [pid 29126:tid 29126] [client 2a01:4f8:10a:2006::2:44488] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||alexgitlin.com|F|2"] [data ".thehighwaystar.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "alexgitlin.com"] [uri "/npp/www.thehighwaystar.com"] [unique_id "aZ6kA-tPCb7Bg3INwYXDDQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Mendip_Defender
2026-02-23 08:41:19
(4 months ago)
2a01:4f8:10a:2006::2 - - [23/Feb/2026:08:41:18 +0000] "GET /index.php/about-us/ HTTP/1.0" 200 16248 ...
show more
2a01:4f8:10a:2006::2 - - [23/Feb/2026:08:41:18 +0000] "GET /index.php/about-us/ HTTP/1.0" 200 16248 "-" "serpstatbot/2.1 (advanced backlink tracking bot; https://serpstatbot.com/; [email protected] )"
...
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-02-20 20:49:06
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 3 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 15:49:00.958987 2026] [security2:error] [pid 19550:tid 19550] [client 2a01:4f8:10a:2006::2:53684] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||adoniahenterprises.com|F|2"] [data ".user.ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "adoniahenterprises.com"] [uri "/goober_.user.ini"] [unique_id "aZjIvGA_M3xIBLdWhM-T2QAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
tinect
2026-02-19 17:18:39
(4 months ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-bad-user-agent
Web App Attack
Bad Web Bot
๐ณ๐ฑ
BlueWire Hosting
2026-01-26 11:15:17
(5 months ago)
Bad bot ignoring robot.txt
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-01-08 22:04:06
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 3 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 08 17:04:00.602001 2026] [security2:error] [pid 18678:tid 18678] [client 2a01:4f8:10a:2006::2:39984] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||garyandthegroove.com|F|2"] [data ".thecollectiveoffshore.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "garyandthegroove.com"] [uri "/www.thecollectiveoffshore.com"] [unique_id "aWAp0EE_3q_aeSfPbubVtQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 02:14:42
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 3 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 21:14:37.293044 2025] [security2:error] [pid 24162:tid 24162] [client 2a01:4f8:10a:2006::2:42710] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||wmionline.org|F|2"] [data ".wordpress.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "wmionline.org"] [uri "/wmionline.wordpress.com"] [unique_id "aTTjDflvCejPWOg_BuXsowAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-01 05:35:06
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 3 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a01:4f8:10a:2006::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 00:34:59.496432 2025] [security2:error] [pid 20221:tid 20221] [client 2a01:4f8:10a:2006::2:48656] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||serviciodeimpermeabilizaciontijuana.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "serviciodeimpermeabilizaciontijuana.com"] [uri "/nosotros/instagram.com"] [unique_id "aS0pA0H_8GRtnhtQ_kpr_wAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
2000cn.com.au
2025-11-30 03:50:04
(7 months ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-bad-user-agent
Bad Web Bot
Web App Attack
๐จ๐ณ
ThreatBook.io
2025-11-20 23:54:49
(7 months ago)
2025-11-20 21:53:22 /manager/status
2025-11-20 21:20:17 /robots.txt
2025-11-20 21:53:40 /manager/htm ...
show more
2025-11-20 21:53:22 /manager/status
2025-11-20 21:20:17 /robots.txt
2025-11-20 21:53:40 /manager/html
2025-11-20 21:20:17 /
show less
Web App Attack