๐บ๐ธ
gui-ying233
2026-07-08 00:07:39
(9 hours ago)
meta-webindexer/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)
Bad Web Bot
๐บ๐ธ
gui-ying233
2026-07-07 00:06:02
(1 day ago)
meta-webindexer/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-05 23:40:07
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 19:39:59.366883 2026] [security2:error] [pid 15616:tid 15616] [client 2a03:2880:f800:17:::55886] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.scoutinsignia.com|F|2"] [data ".ebay.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.scoutinsignia.com"] [uri "/www.ebay.com"] [unique_id "akrrT3_pRJZGawqeO0bL4wAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Skyrider
2026-07-05 22:46:39
(2 days ago)
Nginx: HTTP 4xx probe/scan attempts. Automated fail2ban report.
Bad Web Bot
Web App Attack
๐บ๐ธ
ersei.net
2026-07-05 10:09:56
(2 days ago)
Brute force multiple 403s
Brute-Force
๐บ๐ธ
gui-ying233
2026-07-05 00:06:58
(3 days ago)
meta-webindexer/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)
Bad Web Bot
๐ฉ๐ช
LRob
2026-07-05 00:01:21
(3 days ago)
Repeated attacks detected by Fail2Ban in recidive jail
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-04 22:32:37
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 18:32:33.418568 2026] [security2:error] [pid 32766:tid 32766] [client 2a03:2880:f800:17:::54822] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||proinsaca.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "proinsaca.com"] [uri "/proinsaca.com"] [unique_id "akmKAUhhvmMcc_5soNfP_gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Skyrider
2026-07-04 22:22:24
(3 days ago)
Nginx: HTTP 4xx probe/scan attempts. Automated fail2ban report.
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 20:07:44
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 16:07:39.732892 2026] [security2:error] [pid 16182:tid 16182] [client 2a03:2880:f800:17:::53222] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||owenmail.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "owenmail.com"] [uri "/owenmail.com"] [unique_id "akloC5ZFd4u6MdQobY1_ogAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 17:03:43
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 13:03:37.121691 2026] [security2:error] [pid 15726:tid 15726] [client 2a03:2880:f800:17:::28544] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||csm-dtc.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "csm-dtc.com"] [uri "/csm-dtc.com"] [unique_id "akk86Vo94-4W54BZun2uCAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
macrob
2026-07-04 11:26:10
(3 days ago)
2026/07/04 11:26:08 [error] 1384085#1384085: *350234044 access forbidden by rule, client: 2a03:2880: ...
show more
2026/07/04 11:26:08 [error] 1384085#1384085: *350234044 access forbidden by rule, client: 2a03:2880:f800:17::, server: binixo.com.ar, request: "GET /wp-content/plugins/jquery-validation-for-contact-form-7/css/jvcf7_validate.css?ver=5.3.7 HTTP/2.0", host: "binixo.com.ar", referrer: "https://binixo.com.ar/sobre-nosotros/"
2026/07/04 11:26:09 [error] 1384085#1384085: *350234062 access forbidden by rule, client: 2a03:2880:f800:17::, server: binixo.com.ar, request: "GET /wp-content/themes/donna/js/jquery-3.2.1.min.js HTTP/2.0", host: "binixo.com.ar", referrer: "https://binixo.com.ar/sobre-nosotros/"
2026/07/04 11:26:09 [error] 1384085#1384085: *350234072 access forbidden by rule, client: 2a03:2880:f800:17::, server: binixo.com.ar, request: "GET /wp-content/themes/donna/img/why/costs.png HTTP/2.0", host: "binixo.com.ar", referrer: "https://binixo.com.ar/sobre-nosotros/"
...
show less
Web App Attack
๐ต๐ฑ
sefinek.net
2026-07-04 07:29:13
(4 days ago)
Triggered Cloudflare WAF (firewallManaged) from US.
Action: BLOCK | Protocol: HTTP/2 (GET) | Endpoin ...
show more
Triggered Cloudflare WAF (firewallManaged) from US.
Action: BLOCK | Protocol: HTTP/2 (GET) | Endpoint: /login | UA: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-04 06:32:16
(4 days ago)
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:2880:f800:17:: (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 02:32:09.899627 2026] [security2:error] [pid 21292:tid 21292] [client 2a03:2880:f800:17:::61090] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||jennlaurenphotography.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jennlaurenphotography.com"] [uri "/jennlaurenphotography.com"] [unique_id "akio6WXcyGz5aYF6WRn1MQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ersei.net
2026-07-03 13:44:22
(4 days ago)
Brute force multiple 403s
Brute-Force