๐บ๐ธ
TPI-Abuse
2026-01-26 02:06:11
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 21:06:05.892427 2026] [security2:error] [pid 12810:tid 12810] [client 2a03:e600:100::4:34654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.capefearastro.org"] [uri "/.git/config"] [unique_id "aXbMDQsmFNQd76zzVl8bJgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-25 21:41:28
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 16:41:19.148533 2026] [security2:error] [pid 8566:tid 8566] [client 2a03:e600:100::4:44092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.ftwwx.com"] [uri "/.git/config"] [unique_id "aXaN_9O9XIyTSBcsFU5XnwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-25 20:44:06
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 15:44:01.025959 2026] [security2:error] [pid 718023:tid 718023] [client 2a03:e600:100::4:56798] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.alltrashremoval.com"] [uri "/.git/config"] [unique_id "aXaAkT0SPQLiJ0xWsDXzjQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-20 16:30:52
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 11:30:44.434873 2026] [security2:error] [pid 2495:tid 2495] [client 2a03:e600:100::4:57856] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.transparentforest.com"] [uri "/.git/config"] [unique_id "aW-ttJrSAt1wrqavzUSrKwAAAC4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-14 14:51:02
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 09:50:56.783664 2026] [security2:error] [pid 932500:tid 932628] [client 2a03:e600:100::4:55346] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||killasgarage.bike|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "killasgarage.bike"] [uri "/ge.sql"] [unique_id "aWetUFBbbmdWsn_6M70jagAAAos"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-13 16:30:11
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 11:30:06.066564 2026] [security2:error] [pid 23140:tid 23140] [client 2a03:e600:100::4:54364] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.kurikka.net"] [uri "/.git/config"] [unique_id "aWZzDoA7B3QJsSKdPw1hNgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-12 09:14:10
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 12 04:14:02.198524 2026] [security2:error] [pid 3903:tid 3903] [client 2a03:e600:100::4:42202] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.cspminc.com"] [uri "/.git/config"] [unique_id "aWS7Wh3uQddKrXvdCpYBNwAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-09 08:40:20
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 09 03:40:12.222004 2026] [security2:error] [pid 5044:tid 5044] [client 2a03:e600:100::4:48904] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||soundtrax.net|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "soundtrax.net"] [uri "/so.sql"] [unique_id "aWC-7ClUS-t2enn1kiV97wAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Globe2
2026-01-05 12:20:19
(5 months ago)
ModSec - Multiple 403s within a short period of time [server: H3]
Web App Attack
๐ฑ๐ป
garmtech.com
2026-01-03 10:01:34
(6 months ago)
Attempted access to sensitive endpoint (/login) detected. Automated scan or unauthorized probing.
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-03 05:29:18
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 03 00:29:09.415780 2026] [security2:error] [pid 27234:tid 27234] [client 2a03:e600:100::4:43128] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||d365geek.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "d365geek.com"] [uri "/k_com.sql"] [unique_id "aVipJTwP0zNUz1Sy363dYwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-01 06:57:05
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 01 01:56:59.502610 2026] [security2:error] [pid 29050:tid 29050] [client 2a03:e600:100::4:56414] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mountainjaytherapy.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mountainjaytherapy.com"] [uri "/mo.sql"] [unique_id "aVYau9du3vKafqNbEvsNRgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-29 17:41:22
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 12:41:15.585544 2025] [security2:error] [pid 8799:tid 8799] [client 2a03:e600:100::4:57070] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||beach98.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "beach98.com"] [uri "/be.sql"] [unique_id "aVK9O5igHzNtEN5nkf_v3gAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-29 15:21:39
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 10:21:31.613095 2025] [security2:error] [pid 30367:tid 30367] [client 2a03:e600:100::4:60122] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||pucketosgardenclub.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pucketosgardenclub.org"] [uri "/pucketosgarden.sql"] [unique_id "aVKce-w9kSsgOakU6v63NQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-26 21:56:51
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 26 16:56:46.446216 2025] [security2:error] [pid 20369:tid 20369] [client 2a03:e600:100::4:33156] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vintageamptubes.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vintageamptubes.com"] [uri "/ageamptubes_com.sql"] [unique_id "aU8EnhBCPmSXUjf53h_SyAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack