πΊπΈ
TPI-Abuse
2025-04-22 06:14:06
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 22 02:13:58.586056 2025] [security2:error] [pid 1566003:tid 1566003] [client 2a03:e600:100::4:15392] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||silalaw.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "silalaw.com"] [uri "/administrator/backups/wp-sql.sql"] [unique_id "aAczprbK5I3VBiHI6-gDawAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-04-20 13:41:17
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 20 09:41:12.245183 2025] [security2:error] [pid 27299:tid 27299] [client 2a03:e600:100::4:6072] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||lockdownclaim.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lockdownclaim.com"] [uri "/administrator/backups/database.sql"] [unique_id "aAT5eEhTcxaHrhsALMYxDwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-04-17 22:35:43
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 17 18:35:36.411364 2025] [security2:error] [pid 3142331:tid 3142331] [client 2a03:e600:100::4:40062] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.casapapayasanmiguel.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.casapapayasanmiguel.com"] [uri "/administrator/backups/database-sql.sql"] [unique_id "aAGCOLvUKJQGxswAI0_GAwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Richie
2025-04-11 14:43:23
(1 year ago)
[HOST1] Port Scan detected
Port Scan
πΊπΈ
TPI-Abuse
2025-04-11 06:37:43
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 11 02:37:35.011549 2025] [security2:error] [pid 963507:tid 963507] [client 2a03:e600:100::4:33348] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||maffiniandbearce.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "maffiniandbearce.com"] [uri "/wp-content/db.sql"] [unique_id "Z_i4r6n8MF5qqKy4r2u9hAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-04-08 18:16:15
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 08 14:16:10.939381 2025] [security2:error] [pid 8678:tid 8678] [client 2a03:e600:100::4:1948] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||sparler.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "sparler.com"] [uri "/wp-content/db.sql"] [unique_id "Z_Vn6qLlqhtnT4xZY9oGpgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-04-04 15:02:55
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 04 11:02:46.756549 2025] [security2:error] [pid 4687:tid 4687] [client 2a03:e600:100::4:38594] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||kawkacevents.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kawkacevents.com"] [uri "/wp-content/db.sql"] [unique_id "Z-_0lu8EMWvNgZuO6KUPTgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-04-04 04:30:16
(1 year ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
πΊπΈ
TPI-Abuse
2025-04-04 01:31:21
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 03 21:31:13.785823 2025] [security2:error] [pid 32200:tid 32200] [client 2a03:e600:100::4:60912] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ergocorrect.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ergocorrect.com"] [uri "/db.sql"] [unique_id "Z-82YabTm9usyX2a63JpSQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-04-03 05:32:59
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 03 01:32:54.645073 2025] [security2:error] [pid 8428:tid 8428] [client 2a03:e600:100::4:9780] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||gepteszt.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gepteszt.com"] [uri "/wp-content/db.sql"] [unique_id "Z-4dhhX2gUTzE_88zp-hTAAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-04-02 20:48:01
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 02 16:47:56.576969 2025] [security2:error] [pid 1600427:tid 1600427] [client 2a03:e600:100::4:7548] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||lspfest.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lspfest.com"] [uri "/db.sql"] [unique_id "Z-2ifFQvsd0JYjDUU2mDxAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-04-02 17:19:43
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 02 13:19:36.343756 2025] [security2:error] [pid 32059:tid 32059] [client 2a03:e600:100::4:56426] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||engineeringarts.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "engineeringarts.com"] [uri "/db.sql"] [unique_id "Z-1xqLNXStrqULUPzW0E2wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-04-02 01:18:59
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 01 21:18:51.302168 2025] [security2:error] [pid 28249:tid 28249] [client 2a03:e600:100::4:32248] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||victotex.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "victotex.com"] [uri "/database.sql"] [unique_id "Z-yQe4eIORZXk_ld-ch5jAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-03-29 07:55:36
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 29 03:55:30.878575 2025] [security2:error] [pid 1747:tid 1747] [client 2a03:e600:100::4:24914] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||puckerbottombikini.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "puckerbottombikini.com"] [uri "/database.sql"] [unique_id "Z-enchAmHIIX3g0acANGZQAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-03-23 11:25:43
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 23 07:25:39.510964 2025] [security2:error] [pid 5784:tid 5784] [client 2a03:e600:100::4:47434] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||innovacionesnimba.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "innovacionesnimba.com"] [uri "/wp-content/database.sql"] [unique_id "Z9_vs43dkM4JcKr3IPg9wwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack