๐ณ๐ฑ
Savvii
2026-07-05 02:11:10
(1 hour ago)
20 attempts against mh-misbehave-ban on grape
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2026-07-05 00:30:04
(2 hours ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 09:44:24
(17 hours ago)
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 se ...
show more
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 05:44:18.839680 2026] [security2:error] [pid 24792:tid 24792] [client 2a0b:e40:1::108:37376] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at ARGS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "17"] [id "211030"] [rev "3"] [msg "COMODO WAF: LDAP Injection Attack||www.susanoneill.us|F|2"] [data "Matched Data: ('~'||( found within ARGS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "www.susanoneill.us"] [uri "/"] [unique_id "akjV8rAO9_xJM01tP5j8QwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 20:25:42
(1 day ago)
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 se ...
show more
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 16:25:39.115507 2026] [security2:error] [pid 29791:tid 29791] [client 2a0b:e40:1::108:40129] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at ARGS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "17"] [id "211030"] [rev "3"] [msg "COMODO WAF: LDAP Injection Attack||goldcountrygermanamericanclub.org|F|2"] [data "Matched Data: ('~'||( found within ARGS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "goldcountrygermanamericanclub.org"] [uri "/"] [unique_id "akgawzAkMZWo6qy43P2qnAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 19:45:57
(1 day ago)
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 se ...
show more
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 15:45:48.660415 2026] [security2:error] [pid 12563:tid 12563] [client 2a0b:e40:1::108:1650] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at ARGS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "17"] [id "211030"] [rev "3"] [msg "COMODO WAF: LDAP Injection Attack||mjkhan.com|F|2"] [data "Matched Data: ('~'||( found within ARGS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "mjkhan.com"] [uri "/"] [unique_id "akgRbHwqR9UnGivclzkXkwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 17:33:09
(1 day ago)
(mod_security) mod_security (id:220150) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 se ...
show more
(mod_security) mod_security (id:220150) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 13:33:02.984501 2026] [security2:error] [pid 32701:tid 32701] [client 2a0b:e40:1::108:3730] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:union(?:\\\\/\\\\*.{0,399}\\\\*\\\\/)?select)" at ARGS:page_id. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5662"] [id "220150"] [rev "5"] [msg "COMODO WAF: SQL injection vulnerability in Ginkgo CMS 5.0 (CVE-2013-5318)||arapi.org|F|2"] [data "130union/**/all/**/select/**/'qvbzqwhswy35bpeqpbqq'---"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "arapi.org"] [uri "/"] [unique_id "akfyTkzDD4Bwb3yX1K9pKAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 16:38:50
(1 day ago)
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 se ...
show more
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 12:38:47.403558 2026] [security2:error] [pid 1865:tid 1865] [client 2a0b:e40:1::108:63294] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at ARGS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "17"] [id "211030"] [rev "3"] [msg "COMODO WAF: LDAP Injection Attack||glassclublake.com|F|2"] [data "Matched Data: ('~'||( found within ARGS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "glassclublake.com"] [uri "/"] [unique_id "akfll73vfMNl5V2qUDvy0AAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 14:11:58
(1 day ago)
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 se ...
show more
(mod_security) mod_security (id:211030) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 10:11:53.662783 2026] [security2:error] [pid 27995:tid 27995] [client 2a0b:e40:1::108:24682] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at ARGS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "17"] [id "211030"] [rev "3"] [msg "COMODO WAF: LDAP Injection Attack||stgeorgellc.com|F|2"] [data "Matched Data: ('~'||( found within ARGS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "stgeorgellc.com"] [uri "/"] [unique_id "akfDKV-k48uJwXl2vmxDSAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 13:50:08
(1 day ago)
(mod_security) mod_security (id:220150) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 se ...
show more
(mod_security) mod_security (id:220150) triggered by 2a0b:e40:1::108 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 09:50:00.347887 2026] [security2:error] [pid 25272:tid 25272] [client 2a0b:e40:1::108:27002] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:union(?:\\\\/\\\\*.{0,399}\\\\*\\\\/)?select)" at ARGS:_escaped_fragment_. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5662"] [id "220150"] [rev "5"] [msg "COMODO WAF: SQL injection vulnerability in Ginkgo CMS 5.0 (CVE-2013-5318)||www.travelingguitarfoundation.org|F|2"] [data "union/**/all/**/select/**/'qkkzqhqvrsazqqaqpxbq'---"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.travelingguitarfoundation.org"] [uri "/"] [unique_id "ake-CE8d1xQOPbpCz_O74QAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-03 13:50:04
(1 day ago)
| Multiple SQL injection attempts from same source ip.(multiple servers)
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
xmission.com
2026-05-07 08:09:09
(1 month ago)
Blocked by UFW (TCP on 20523)
Source port: 53244
Packet length: 72
This report (for 2a0b:0e40:0001: ...
show more
Blocked by UFW (TCP on 20523)
Source port: 53244
Packet length: 72
This report (for 2a0b:0e40:0001:0000:0000:0000:0000:0108) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan