๐บ๐ธ
TPI-Abuse
2026-02-02 11:48:15
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 02 06:48:06.817184 2026] [security2:error] [pid 14293:tid 14293] [client 2a0d:bbc7::f816:3eff:feec:9f18:36326] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||roughexports.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "roughexports.com"] [uri "/rough.sql"] [unique_id "aYCO9g1R8z0Ma7TzICGfGgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-02-01 22:59:16
(5 months ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-01-31.
show less
Hacking
Web App Attack
SSH
๐บ๐ธ
TPI-Abuse
2026-01-29 06:10:43
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 29 01:10:36.863091 2026] [security2:error] [pid 27480:tid 27500] [client 2a0d:bbc7::f816:3eff:feec:9f18:43700] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||sweeneyzone.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "sweeneyzone.com"] [uri "/sweeneyz.sql"] [unique_id "aXr53HblDAOoawYfmHaKyAAAANI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-26 14:35:32
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 26 09:35:24.126409 2026] [security2:error] [pid 4907:tid 4907] [client 2a0d:bbc7::f816:3eff:feec:9f18:40678] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.lucid-events.com"] [uri "/.git/config"] [unique_id "aXd7rACRg2fgxRpa5V2d9wAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-26 02:16:54
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 21:16:48.593429 2026] [security2:error] [pid 31852:tid 31852] [client 2a0d:bbc7::f816:3eff:feec:9f18:35594] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.chrisamedee.com"] [uri "/.git/config"] [unique_id "aXbOkH5eEabMYVQF92g3HwAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-26 00:46:28
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 19:46:24.048639 2026] [security2:error] [pid 725947:tid 725947] [client 2a0d:bbc7::f816:3eff:feec:9f18:49168] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.oshadega.com"] [uri "/.git/config"] [unique_id "aXa5YOO46g_j_8I3o5gewQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-21 22:09:05
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 17:09:01.740901 2026] [security2:error] [pid 28438:tid 28438] [client 2a0d:bbc7::f816:3eff:feec:9f18:60558] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.montgomeryhistoricalsociety.org"] [uri "/.git/config"] [unique_id "aXFOfbYtMCJjZOwOc3jELgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xmission.com
2026-01-16 10:12:28
(6 months ago)
Blocked by UFW (TCP on 8333)
Source port: 59116
Packet length: 80
This report (for 2a0d:bbc7:0000:0 ...
show more
Blocked by UFW (TCP on 8333)
Source port: 59116
Packet length: 80
This report (for 2a0d:bbc7:0000:0000:f816:3eff:feec:9f18) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
xmission.com
2026-01-05 05:17:23
(6 months ago)
Blocked by UFW (TCP on 8333)
Source port: 59844
Packet length: 80
This report (for 2a0d:bbc7:0000:0 ...
show more
Blocked by UFW (TCP on 8333)
Source port: 59844
Packet length: 80
This report (for 2a0d:bbc7:0000:0000:f816:3eff:feec:9f18) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-01-04 13:17:15
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 04 08:17:05.676276 2026] [security2:error] [pid 3317152:tid 3317152] [client 2a0d:bbc7::f816:3eff:feec:9f18:39620] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||edmestonfd.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "edmestonfd.com"] [uri "/dmestonfd.sql"] [unique_id "aVpoUXKHrl9la4jvTE68IgAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-03 05:53:03
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 03 00:52:54.032036 2026] [security2:error] [pid 17856:tid 17856] [client 2a0d:bbc7::f816:3eff:feec:9f18:43806] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||drdot.xyz|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "drdot.xyz"] [uri "/back.sql"] [unique_id "aViutjBUoDa_6VuihpzLywAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-31 02:19:09
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 21:19:03.431233 2025] [security2:error] [pid 5911:tid 5911] [client 2a0d:bbc7::f816:3eff:feec:9f18:45840] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||microkerneltechnologies.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "microkerneltechnologies.com"] [uri "/echnologies_com.sql"] [unique_id "aVSIF5EyBt1-ETQccJmPCQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-25 19:53:33
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 25 14:53:22.226435 2025] [security2:error] [pid 8700:tid 8700] [client 2a0d:bbc7::f816:3eff:feec:9f18:55320] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||interiorsolutions-stuart.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "interiorsolutions-stuart.com"] [uri "/interiorsolutions-stuar.sql"] [unique_id "aU2WMtnD4P6OS0LBtxivRQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-13 07:05:58
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 13 02:05:49.605380 2025] [security2:error] [pid 29945:tid 29945] [client 2a0d:bbc7::f816:3eff:feec:9f18:38256] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||kochcreative.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kochcreative.com"] [uri "/kochcreati.sql"] [unique_id "aT0QTQnWP6UB-5kKauiupQAAADE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-13 02:50:51
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 2a0d:bbc7::f816:3eff:feec:9f18 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 12 21:50:41.253919 2025] [security2:error] [pid 14881:tid 14881] [client 2a0d:bbc7::f816:3eff:feec:9f18:57144] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||indoorsfinishing.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "indoorsfinishing.com"] [uri "/indoor.sql"] [unique_id "aTzUgSVdkFeh5Z6z0R0djQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack