๐บ๐ธ
TPI-Abuse
2025-12-11 22:31:08
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 11 17:31:01.786474 2025] [security2:error] [pid 5183:tid 5183] [client 2a0b:f4c2:2::63:21467] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||inquisitivequincie.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "inquisitivequincie.com"] [uri "/back.sql"] [unique_id "aTtGJSN5RYq2Q5bHPbZdqQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-11 20:22:12
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 11 15:22:06.516444 2025] [security2:error] [pid 1876:tid 1876] [client 2a0b:f4c2:2::63:39315] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||hendersonhomes.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "hendersonhomes.com"] [uri "/dump.sql"] [unique_id "aTsn7rjaHYvLgpgS990u1QAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-11 10:41:03
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 11 05:40:56.281898 2025] [security2:error] [pid 2319:tid 2319] [client 2a0b:f4c2:2::63:57381] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||rwabutazafoundation.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rwabutazafoundation.org"] [uri "/rwabutaza.sql"] [unique_id "aTqfuKz-PM0rJagCsmSlWwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xmission.com
2025-12-11 09:24:07
(7 months ago)
Blocked by UFW (TCP on 48070)
Source port: 35491
Packet length: 80
This report (for 2a0b:f4c2:0002: ...
show more
Blocked by UFW (TCP on 48070)
Source port: 35491
Packet length: 80
This report (for 2a0b:f4c2:0002:0000:0000:0000:0000:0063) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2025-12-11 04:48:16
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 23:48:11.000465 2025] [security2:error] [pid 1923:tid 1923] [client 2a0b:f4c2:2::63:45503] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||rddeckerphotography.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rddeckerphotography.com"] [uri "/rddeckerphotography_com.sql"] [unique_id "aTpNCk1dGxwA1gVTKbdUJwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xmission.com
2025-12-09 20:14:58
(7 months ago)
Blocked by UFW (TCP on 15462)
Source port: 6677
Packet length: 80
This report (for 2a0b:f4c2:0002:0 ...
show more
Blocked by UFW (TCP on 15462)
Source port: 6677
Packet length: 80
This report (for 2a0b:f4c2:0002:0000:0000:0000:0000:0063) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2025-12-09 13:52:18
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 08:52:11.384331 2025] [security2:error] [pid 28679:tid 28688] [client 2a0b:f4c2:2::63:25587] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||campingcosmetics.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "campingcosmetics.com"] [uri "/campingcos.sql"] [unique_id "aTgpi4W_D6D5Qnv_taH9dgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-09 09:36:21
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 04:36:15.147705 2025] [security2:error] [pid 7897:tid 7897] [client 2a0b:f4c2:2::63:46985] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||quickasawink.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "quickasawink.org"] [uri "/latest.sql"] [unique_id "aTftj4g11Du1p4uyIxei5AAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-08 09:00:38
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 04:00:30.908464 2025] [security2:error] [pid 11264:tid 11264] [client 2a0b:f4c2:2::63:48543] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||directcap.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "directcap.com"] [uri "/tcap_com.sql"] [unique_id "aTaTrpw1tQ_51KqC_G292gAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-08 00:25:52
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 19:25:43.906067 2025] [security2:error] [pid 21619:tid 21619] [client 2a0b:f4c2:2::63:18019] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||prostar.industries|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "prostar.industries"] [uri "/ostar_com.sql"] [unique_id "aTYbB77Fj9sAW_iZO7BJ9gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xmission.com
2025-12-07 17:34:59
(7 months ago)
Blocked by UFW (TCP on 10775)
Source port: 44495
Packet length: 80
This report (for 2a0b:f4c2:0002: ...
show more
Blocked by UFW (TCP on 10775)
Source port: 44495
Packet length: 80
This report (for 2a0b:f4c2:0002:0000:0000:0000:0000:0063) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
xmission.com
2025-12-06 12:26:40
(7 months ago)
Blocked by UFW (TCP on 21657)
Source port: 57189
Packet length: 80
This report (for 2a0b:f4c2:0002: ...
show more
Blocked by UFW (TCP on 21657)
Source port: 57189
Packet length: 80
This report (for 2a0b:f4c2:0002:0000:0000:0000:0000:0063) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2025-12-06 00:09:40
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 19:09:32.462820 2025] [security2:error] [pid 21252:tid 21252] [client 2a0b:f4c2:2::63:39321] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||thepercussionworks.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "thepercussionworks.com"] [uri "/ssionworks_com.sql"] [unique_id "aTN0PLhuVDWxxOzIpg6OQAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xmission.com
2025-12-05 18:54:11
(7 months ago)
Blocked by UFW (TCP on 11110)
Source port: 55661
Packet length: 80
This report (for 2a0b:f4c2:0002: ...
show more
Blocked by UFW (TCP on 11110)
Source port: 55661
Packet length: 80
This report (for 2a0b:f4c2:0002:0000:0000:0000:0000:0063) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2025-12-05 13:45:52
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:2::63 (tor-exit-63.for-privacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 08:45:48.023862 2025] [security2:error] [pid 28395:tid 28395] [client 2a0b:f4c2:2::63:33937] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||pyxelstudios.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pyxelstudios.com"] [uri "/elstudios_com.sql"] [unique_id "aTLiDAhpn_lE5qi721UdZQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack