๐บ๐ธ
TPI-Abuse
2025-12-02 18:04:26
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 13:04:22.453432 2025] [security2:error] [pid 14088:tid 14088] [client 2a03:e600:100::4:26454] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mrpinman.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mrpinman.com"] [uri "/mr.sql"] [unique_id "aS8qJvozV6clXkBX6DM_eQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-30 11:44:01
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 30 06:43:55.228318 2025] [security2:error] [pid 14282:tid 14282] [client 2a03:e600:100::4:6392] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||blacksheepoffroad.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "blacksheepoffroad.com"] [uri "/eepoffroad_com.sql"] [unique_id "aSwt-zGB3aUxXufTmTlYdwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-29 15:17:23
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 29 10:17:15.417517 2025] [security2:error] [pid 397909:tid 397913] [client 2a03:e600:100::4:62662] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||tristatepropertymgmt.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tristatepropertymgmt.com"] [uri "/atepropertymgmt.sql"] [unique_id "aSsOe5y5HdpbEN7c8wz23QAAAEA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-28 20:38:04
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 15:37:57.434178 2025] [security2:error] [pid 4062:tid 4062] [client 2a03:e600:100::4:33840] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||unionega.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "unionega.com"] [uri "/.sql"] [unique_id "aSoIJalgh2UEe1DQ9LB2AQAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 05:18:51
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:18:46.018382 2025] [security2:error] [pid 25890:tid 25890] [client 2a03:e600:100::4:59972] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ianmagarzo.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ianmagarzo.com"] [uri "/arzo.sql"] [unique_id "aSaNtkjWi61W1TBw6QqerQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-16 22:11:25
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 17:11:20.662951 2025] [security2:error] [pid 6449:tid 6449] [client 2a03:e600:100::4:46764] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||brbcoin.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brbcoin.com"] [uri "/brbcoin.sql"] [unique_id "aRpMCI_tvT31P2xqqVNLeAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-12 15:00:52
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 10:00:46.860629 2025] [security2:error] [pid 27382:tid 27382] [client 2a03:e600:100::4:38346] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||fundingangelinvestors.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "fundingangelinvestors.com"] [uri "/wordpress.sql"] [unique_id "aRShHsa4EYPhtdTPVThuJwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-11 14:13:00
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 09:12:54.150662 2025] [security2:error] [pid 5298:tid 5298] [client 2a03:e600:100::4:59992] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||zacharypowers.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "zacharypowers.com"] [uri "/.sql"] [unique_id "aRNEZmj4oCFWuGO1PUrLfQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-11 11:42:29
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 06:42:24.308522 2025] [security2:error] [pid 4460:tid 4460] [client 2a03:e600:100::4:28026] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||jazziientertainment.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jazziientertainment.com"] [uri "/entertainment.sql"] [unique_id "aRMhIKfgkrFZi9etAT30UQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-11 01:13:44
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 20:13:40.066999 2025] [security2:error] [pid 18252:tid 18271] [client 2a03:e600:100::4:40718] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||conservativedemocrat.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "conservativedemocrat.com"] [uri "/back.sql"] [unique_id "aRKNxDgUZu-McMKqNWLYOwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-10 20:47:27
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 15:47:22.092719 2025] [security2:error] [pid 14844:tid 14844] [client 2a03:e600:100::4:53786] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||n4fh.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "n4fh.com"] [uri "/n4.sql"] [unique_id "aRJPWgpZo5jQ4Z2q1Qqd0wAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-06 00:19:46
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ...
show more
(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 19:19:41.701311 2025] [security2:error] [pid 15641:tid 15641] [client 2a03:e600:100::4:45134] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.lzbvi.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.lzbvi.com"] [uri "/daily.sql"] [unique_id "aQvpnZ_7R3I4gREoFOV0OgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
R.G.
2025-10-28 15:45:18
(8 months ago)
2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net), 7 distributed directadmin attacks on a ...
show more
2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net), 7 distributed directadmin attacks on account [cloacked] in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 28 16:45:04 user denied: wordpress (mysql-denied) from 2a0e:97c0:3e3:460:1337:b40b:1337:11
show less
Brute-Force
๐ซ๐ฎ
stinpriza
2025-10-25 22:30:08
(8 months ago)
Web App Attack
Web App Attack
๐จ๐ญ
SOC [GOLINE SA]
2025-10-21 19:02:19
(8 months ago)
FortiGate detected IPS attack from IPv6 address 2a03:e600:100::4
Hacking