๐บ๐ธ
TPI-Abuse
2026-07-13 19:51:26
(6 hours ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 15:51:21.330209 2026] [security2:error] [pid 10623:tid 10623] [client 52.123.183.57:37376] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.pinebrookdesign.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.pinebrookdesign.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "alVBuaWO5mCfV8NHHTGi1QAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-01 13:07:12
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 09:07:04.669040 2026] [security2:error] [pid 4628:tid 4628] [client 52.123.183.57:2434] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.cbcconsult.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cbcconsult.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "ah2D-Jq-XFJDaT7tv4Hd5AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 17:52:02
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 13:51:57.852199 2026] [security2:error] [pid 10812:tid 10812] [client 52.123.183.57:15370] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.cbcconsult.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cbcconsult.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "afOWvbQFNnfdjURbBlpC2wAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 02:12:01
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 22:11:53.601340 2026] [security2:error] [pid 1632737:tid 1632737] [client 52.123.183.57:29704] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.feaverslane.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.feaverslane.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "adW5aTccxLyH_0pa0CIRMAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-01 15:48:54
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 11:48:48.793783 2026] [security2:error] [pid 4989:tid 4989] [client 52.123.183.57:7299] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.cmcnow.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cmcnow.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "ac0-YG9H-GSd15GKf6CsWQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-30 17:24:34
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 30 12:24:28.355306 2026] [security2:error] [pid 17148:tid 17148] [client 52.123.183.57:26498] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.feaverslane.com|F|2"] [data ".com#[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.feaverslane.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected] "] [unique_id "aXzpTLqXUAVtCMO_k9yVQQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-22 14:54:16
(9 months ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 22 10:54:09.918791 2025] [security2:error] [pid 28964:tid 28964] [client 52.123.183.57:10249] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.varalla.com|F|2"] [data ".com#[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.varalla.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected] "] [unique_id "aNFjEaY58noqEZLzV5B6OwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-11 19:28:45
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 11 15:28:41.557277 2025] [security2:error] [pid 1346361:tid 1346361] [client 52.123.183.57:10500] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.cbcconsult.com|F|2"] [data ".com#[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cbcconsult.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected] "] [unique_id "aEnY6d4yFSbv96moe7OsKAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-21 20:46:57
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 52.123.183.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 21 16:46:53.875016 2025] [security2:error] [pid 491739:tid 491739] [client 52.123.183.57:25536] [client 52.123.183.57] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.feaverslane.com|F|2"] [data ".com#[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.feaverslane.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected] "] [unique_id "aC47vZawwzkB6RQQkXt0VAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack