๐ซ๐ท
Sklurk
2026-01-14 22:34:23
(5 months ago)
Web App Attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-10 00:10:38
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 09 19:10:32.705598 2026] [security2:error] [pid 31422:tid 31422] [client 37.139.30.181:48560] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||virginiabeachlovebird.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "virginiabeachlovebird.com"] [uri "/cgi-bin.bak"] [unique_id "aWGY-K5Fw4TIwTS7-ON_ygAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-08 00:49:22
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 19:49:16.059900 2026] [security2:error] [pid 32331:tid 32331] [client 37.139.30.181:37324] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mrbaystreet.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mrbaystreet.com"] [uri "/bk.bak"] [unique_id "aV7_DO6oWhoE_v1_6L_y2wAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-07 20:09:33
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 15:09:29.725000 2026] [security2:error] [pid 26295:tid 26295] [client 37.139.30.181:35112] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||csems.org|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "csems.org"] [uri "/cgi-bin.bak"] [unique_id "aV69ec3Ui0PYU8p7Bnm8cAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-28 08:26:38
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 03:26:32.579619 2025] [security2:error] [pid 6606:tid 6627] [client 37.139.30.181:38146] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||earthtravel.net|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "earthtravel.net"] [uri "/new.bak"] [unique_id "aVDpuKzSQCydotaoFTDfqQAAAFI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-28 08:02:52
(6 months ago)
(mod_security) mod_security (id:225170) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 03:02:44.535753 2025] [security2:error] [pid 9010:tid 9010] [client 37.139.30.181:37498] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||blacksheepoffroad.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "blacksheepoffroad.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aVDkJMdj52YgJW1_zCv2pQAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-12-15 08:16:03
(6 months ago)
Blocked: Reason='Auto-block via DW'; Requests=0
Hacking
๐ฉ๐ช
R.G.
2025-12-13 13:52:11
(6 months ago)
(WPLOGINorWHATEVER) Get lost please 37.139.30.181 (NL/The Netherlands/jackpotdb.jackpot2001.it): 7 i ...
show more
(WPLOGINorWHATEVER) Get lost please 37.139.30.181 (NL/The Netherlands/jackpotdb.jackpot2001.it): 7 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐น๐ท
rtbh.com.tr
2025-12-11 20:10:24
(6 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
๐น๐ท
rtbh.com.tr
2025-12-10 20:10:22
(6 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
๐ณ๐ฑ
Savvii
2025-12-10 14:20:51
(6 months ago)
10 attempts against mh-pma-try-ban on lead
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 18:42:38
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 13:42:33.014808 2025] [security2:error] [pid 7057:tid 7065] [client 37.139.30.181:52436] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||eliteproductions.tv|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "eliteproductions.tv"] [uri "/wwwroot.bak"] [unique_id "aTXKmWidXD5kbCdIUUPZ7AAAAIU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
zynex
2025-12-05 06:46:57
(6 months ago)
URL Probing: /fullbackup.tar.gz
Web App Attack
๐ซ๐ท
masterguru
2025-12-03 02:12:47
(6 months ago)
(wordpress) Apache: Failed WordPress login from 37.139.30.181 (NL/The Netherlands/jackpotdb.jackpot2 ...
show more
(wordpress) Apache: Failed WordPress login from 37.139.30.181 (NL/The Netherlands/jackpotdb.jackpot2001.it): 10 in the last 3600 secs (0-195)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2025-11-18 08:28:22
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 37.139.30.181 (jackpotdb.jackpot2001.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 18 03:28:16.139107 2025] [security2:error] [pid 21683:tid 21683] [client 37.139.30.181:48124] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||shelbynash.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "shelbynash.com"] [uri "/code.bak"] [unique_id "aRwuIEiCotyE_Yz0f7kKaQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack