๐บ๐ธ
TPI-Abuse
2026-04-11 21:39:18
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org) ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 17:39:12.711188 2026] [security2:error] [pid 4097746:tid 4097746] [client 2a0b:f4c2::16:3302] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "telecompros.net"] [uri "/wp-config.phpo"] [unique_id "adq_gNOgrH6ZF77VdPYa_gAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ketovoila.pl
2026-04-01 19:38:10
(3 months ago)
ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/a_com.sql; UA=Mozilla/5.0 ...
show more
ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/a_com.sql; UA=Mozilla/5.0 (iPhone; CPU iPhone OS 17_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Mobile/15E148 Safari/604.1; window=2026-04-01T18:55:53Z..2026-04-01T18:55:53Z
show less
Port Scan
Hacking
Brute-Force
๐บ๐ธ
ipblock.com
2026-03-28 17:31:00
(3 months ago)
IPBlock protected site ID [3717-sec].
Robotic site crawling, undeclared spider
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-03-26 20:41:30
(3 months ago)
Detected attack and reported by a human
Brute-Force
Web App Attack
SSH
DDoS Attack
Exploited Host
Bad Web Bot
๐บ๐ธ
ipblock.com
2026-03-16 00:06:00
(3 months ago)
IPBlock protected site ID [3717-sec].
Robotic site crawling, undeclared spider
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-09 01:41:00
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org) ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 21:40:54.489692 2026] [security2:error] [pid 24854:tid 24854] [client 2a0b:f4c2::16:32724] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mobileonlinecasinos.co|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mobileonlinecasinos.co"] [uri "/wordpress_nos.sql"] [unique_id "aa4lJrAkBuozoxs63RUnJgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-24 03:05:45
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org) ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 22:05:37.275002 2026] [security2:error] [pid 27031:tid 27040] [client 2a0b:f4c2::16:19692] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.sallykimmel.com"] [uri "/.git/config"] [unique_id "aZ0VgQS7hFCSg-IcMezGMQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xmission.com
2026-02-21 17:00:58
(4 months ago)
Blocked by UFW (TCP on 8333)
Source port: 31106
Packet length: 80
This report (for 2a0b:f4c2:0000:0 ...
show more
Blocked by UFW (TCP on 8333)
Source port: 31106
Packet length: 80
This report (for 2a0b:f4c2:0000:0000:0000:0000:0000:0016) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-02-06 22:45:45
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org) ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 06 17:45:41.450630 2026] [security2:error] [pid 23313:tid 23313] [client 2a0b:f4c2::16:5002] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.fiveoceansconsulting.com"] [uri "/.git/config"] [unique_id "aYZvFQ_UnfYWMhHifihLfAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-02-01 22:59:26
(5 months ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-01-31.
show less
Hacking
Web App Attack
SSH
๐บ๐ธ
xmission.com
2026-01-29 07:06:40
(5 months ago)
Blocked by UFW (TCP on 54082)
Source port: 9002
Packet length: 608
This report (for 2a0b:f4c2:0000: ...
show more
Blocked by UFW (TCP on 54082)
Source port: 9002
Packet length: 608
This report (for 2a0b:f4c2:0000:0000:0000:0000:0000:0016) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-01-29 02:30:30
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org) ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 28 21:30:26.122768 2026] [security2:error] [pid 13130:tid 13130] [client 2a0b:f4c2::16:34688] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||jatglobalsolution.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jatglobalsolution.com"] [uri "/ion_com.sql"] [unique_id "aXrGQpPWk5hYngqXWnZ76wAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-26 23:08:02
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org) ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 26 18:07:58.089982 2026] [security2:error] [pid 1150:tid 1150] [client 2a0b:f4c2::16:41316] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.cyberclay.net"] [uri "/.git/config"] [unique_id "aXfzzvvb55HEvu88NLiaRAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-26 02:01:38
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org) ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 21:01:35.209560 2026] [security2:error] [pid 4795:tid 4795] [client 2a0b:f4c2::16:1990] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.keyston.net"] [uri "/.git/config"] [unique_id "aXbK_9myO25gbi0xaeakdAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-25 22:37:37
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org) ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::16 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 17:37:30.345289 2026] [security2:error] [pid 758952:tid 758952] [client 2a0b:f4c2::16:57428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.modistat.com"] [uri "/.git/config"] [unique_id "aXabKthetObtFdyPdDhRgwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack