๐ฎ๐ช
Jim Keir
2026-06-21 18:03:12
(3 weeks ago)
2026-06-21 18:03:11 51.161.37.70 Bad bot, blocking Mozilla/5.0
Bad Web Bot
๐ฉ๐ช
rh24
2026-05-26 15:13:46
(1 month ago)
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 51.161.37.70 (CA/Can ...
show more
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 51.161.37.70 (CA/Canada/proxy-ca005-san70.ahrefs.net)
show less
Bad Web Bot
๐ฉ๐ช
ghostwarriors
2026-05-24 04:50:09
(1 month ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
HandyTreff.de
2026-05-22 05:18:23
(1 month ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -108.05 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -108.05 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)
show less
Web App Attack
Bad Web Bot
๐ฉ๐ช
ghostwarriors
2026-05-21 16:50:58
(1 month ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-20 21:02:16
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 51.161.37.70 (proxy-ca005-san70.ahrefs.net): 1 ...
show more
(mod_security) mod_security (id:210730) triggered by 51.161.37.70 (proxy-ca005-san70.ahrefs.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 17:02:12.539011 2026] [security2:error] [pid 23880:tid 23880] [client 51.161.37.70:23758] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.chicagowca.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.chicagowca.com"] [uri "/[email protected] "] [unique_id "ag4hVEqWon4Cw-B8dSn0SwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-05-01 19:21:08
(2 months ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-04-30 07:22:00
(2 months ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-04-23 23:20:45
(2 months ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-13 13:01:41
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 51.161.37.70 (proxy-ca005-san70.ahrefs.net): 1 ...
show more
(mod_security) mod_security (id:210730) triggered by 51.161.37.70 (proxy-ca005-san70.ahrefs.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 09:01:36.838526 2026] [security2:error] [pid 3143206:tid 3143206] [client 51.161.37.70:24642] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||williamfitzsimmons.com|F|2"] [data ".harlows.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "williamfitzsimmons.com"] [uri "/www.harlows.com"] [unique_id "adzpMNyJxz8o1CTw8YoNSgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
rh24
2026-04-01 20:07:24
(3 months ago)
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 51.161.37.70 (CA/Can ...
show more
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 51.161.37.70 (CA/Canada/proxy-ca005-san70.ahrefs.net)
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-03-29 08:54:28
(3 months ago)
(mod_security) mod_security (id:217291) triggered by 51.161.37.70 (proxy-ca005-san70.ahrefs.net): 1 ...
show more
(mod_security) mod_security (id:217291) triggered by 51.161.37.70 (proxy-ca005-san70.ahrefs.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 04:54:23.455098 2026] [security2:error] [pid 20047:tid 20047] [client 51.161.37.70:52710] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(\\\\n|\\\\r)" at ARGS_NAMES:\\r fromwhere. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "145"] [id "217291"] [rev "2"] [msg "HTTP Header Injection Attack via payload (CR/LF detected)||www.groupof12.com|F|2"] [data "Matched Data: \\x0d found within ARGS_NAMES:\\x5cr fromwhere: \\x0d fromwhere"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "www.groupof12.com"] [uri "/g12terms.php"] [unique_id "acjov6loNzqVmVy5xkG2cQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-15 18:01:14
(4 months ago)
(mod_security) mod_security (id:240950) triggered by 51.161.37.70 (proxy-ca005-san70.ahrefs.net): 1 ...
show more
(mod_security) mod_security (id:240950) triggered by 51.161.37.70 (proxy-ca005-san70.ahrefs.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 15 14:01:07.209157 2026] [security2:error] [pid 27320:tid 27320] [client 51.161.37.70:17082] ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)||www.nancyscafeandcatering.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.nancyscafeandcatering.com"] [uri "/wp-content/themes/eatery/nav.php"] [unique_id "abbz4woAVKUOpdBWSQNMrAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐น๐ท
rtbh.com.tr
2026-03-14 20:12:03
(4 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
๐น๐ท
rtbh.com.tr
2026-03-13 20:12:02
(4 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force