๐บ๐ธ
pixelmemory.us
2026-07-06 08:26:33
(5 days ago)
2026-07-06T08:24:32 37.236.70.5 GET /Photos/Vacation/2013-05%20Japan/raw/IMG_4963.CR2.xmp Mozilla/5. ...
show more
2026-07-06T08:24:32 37.236.70.5 GET /Photos/Vacation/2013-05%20Japan/raw/IMG_4963.CR2.xmp Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
...
show less
Bad Web Bot
๐ฉ๐ช
Tsumugi Kotobuki
2026-07-04 17:19:19
(1 week ago)
Port Scan on Honeypot | Ports: 80/HTTP | Proto: TCP(1) | Flags: all SYN | TTL: 47 | Len: 60B | Win: ...
show more
Port Scan on Honeypot | Ports: 80/HTTP | Proto: TCP(1) | Flags: all SYN | TTL: 47 | Len: 60B | Win: 64240(1) | F2B/ufw-honeypot@2026-07-04T17:19:19Z
show less
Port Scan
Hacking
๐บ๐ธ
Hmorrin
2026-06-23 16:16:05
(2 weeks ago)
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-19 20:42:23
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 16:42:11.428796 2026] [security2:error] [pid 19857:tid 19857] [client 37.236.70.5:50682] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.dodojuice.com|F|2"] [data ".shop.wweua.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.dodojuice.com"] [uri "/www.shop.wweua.com"] [unique_id "ajWpo00QZujnwXg0nsD10wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-29 20:16:09
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 16:16:01.720334 2026] [security2:error] [pid 26647:tid 26647] [client 37.236.70.5:36466] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||homebuilt.org|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "homebuilt.org"] [uri "/vendors/powerplants/[email protected] "] [unique_id "afJnAYHzPhKqQBhSyP-5jQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-24 13:28:45
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 24 09:28:35.622910 2026] [security2:error] [pid 3048:tid 3048] [client 37.236.70.5:17536] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.snapdragonworkshops.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.snapdragonworkshops.com"] [uri "/[email protected] "] [unique_id "aetwA8Ig59McWV21q1eO5gAAAC0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
www.elivecd.org
2026-04-22 17:16:49
(2 months ago)
37.236.70.5 - - [22/Apr/2026:17:33:26 +0100] "GET /news/?reflect_450_month=1&reflect_450_year=2011&r ...
show more
37.236.70.5 - - [22/Apr/2026:17:33:26 +0100] "GET /news/?reflect_450_month=1&reflect_450_year=2011&reflect_450_day=false&reflect_450_start=0&reflect_224_year=2011&reflect_224_month=false&reflect_224_day=false&reflect_224_start=0 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.75 Safari/537.36"
...
show less
DDoS Attack
๐บ๐ธ
TPI-Abuse
2026-04-11 19:21:25
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 15:21:16.946640 2026] [security2:error] [pid 549905:tid 549905] [client 37.236.70.5:33806] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.nwarchitect.com|F|2"] [data ".kljsqc.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nwarchitect.com"] [uri "/www.kljsqc.com"] [unique_id "adqfLNgaI0unovLM7FOCKgAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 14:39:06
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 10:38:59.225254 2026] [security2:error] [pid 5435:tid 5435] [client 37.236.70.5:25514] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.danharrisphotoart.com|F|2"] [data ".greatweddingphotography.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.danharrisphotoart.com"] [uri "/www.greatweddingphotography.com"] [unique_id "ac_RAyZKwCkHYaEKuuNPZgAAAC4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 06:51:09
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 02:50:58.748776 2026] [security2:error] [pid 26781:tid 26781] [client 37.236.70.5:25362] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.precisionk-9.com|F|2"] [data ".amcboise.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.precisionk-9.com"] [uri "/www.amcboise.com"] [unique_id "ac9jUn47wgLir4ERcQ2K0AAAAAU"], referer: http://www.precisionk-9.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
10dencehispahard SL
2026-03-28 19:00:02
(3 months ago)
Unauthorized login attempts [ accesslogs]
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-03-09 15:48:33
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 09 11:48:26.062413 2026] [security2:error] [pid 18203:tid 18217] [client 37.236.70.5:36920] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||digital4z.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "digital4z.com"] [uri "/wp-content/plugins/jetpack/_inc/fonts/automatticons/WS_FTP.LOG"] [unique_id "aa7ryqKiTzQZJ5trHxxpPAAAAEw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-08 01:46:09
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 37.236.70.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 07 20:45:59.515429 2026] [security2:error] [pid 9069:tid 9069] [client 37.236.70.5:15106] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||riverdalechronicles.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "riverdalechronicles.com"] [uri "/links2_files/domconvert_files/WS_FTP.LOG"] [unique_id "aazU1wGR5xlmPO2RBgTPfwAAAAY"], referer: http://riverdalechronicles.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Hmorrin
2026-03-07 19:16:04
(4 months ago)
Port Scan
Anonymous
2026-02-27 20:11:54
(4 months ago)
Web app attack and vulnerability scan detected from IIS logs
Brute-Force
Bad Web Bot
Web App Attack