๐ฌ๐ง
Apache
2026-07-02 09:41:34
(25 minutes ago)
(mod_security) mod_security (id:920440) triggered by 64.31.55.45 (US/United States/45-55-31-64.stati ...
show more
(mod_security) mod_security (id:920440) triggered by 64.31.55.45 (US/United States/45-55-31-64.static.reverse.lstn.net): 5 in the last 300 secs (CF_ENABLE)
show less
Brute-Force
Web App Attack
๐ณ๐ฑ
Savvii
2026-07-02 08:47:55
(1 hour ago)
20 attempts against mh-misbehave-ban on pf221104
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 07:42:02
(2 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 03:41:54.637871 2026] [security2:error] [pid 31910:tid 31910] [client 64.31.55.45:50668] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||dartylife.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "dartylife.com"] [uri "/data.sql"] [unique_id "akYWQnGBbhaubLgQYRxPygAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-07-02 06:05:02
(4 hours ago)
Abuse Detected (28)
Brute-Force
Web App Attack
๐ฌ๐ง
Aetherweb Ark
2026-07-02 05:57:52
(4 hours ago)
(mod_security) mod_security (id:949110) triggered by 64.31.55.45 (US/United States/45-55-31-64.stati ...
show more
(mod_security) mod_security (id:949110) triggered by 64.31.55.45 (US/United States/45-55-31-64.static.reverse.lstn.net): N in the last X secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 04:38:13
(5 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:38:09.676087 2026] [security2:error] [pid 7888:tid 7888] [client 64.31.55.45:58630] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||cauchosindustrialesespeciales.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cauchosindustrialesespeciales.com"] [uri "/1.sql"] [unique_id "akXrMYWtH4LE3-HEvWTk2wAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 03:58:40
(6 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:58:32.832747 2026] [security2:error] [pid 19942:tid 19942] [client 64.31.55.45:62345] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||californiastarsfarm.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "californiastarsfarm.com"] [uri "/1.sql"] [unique_id "akXh6IVKBwNrv-r6ieisFQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 02:35:42
(7 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 22:35:34.531718 2026] [security2:error] [pid 3069:tid 3069] [client 64.31.55.45:56499] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||blucielocapital.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "blucielocapital.com"] [uri "/backup.sql"] [unique_id "akXOdvIXWERt64PderMwpwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 01:59:08
(8 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 21:59:03.885599 2026] [security2:error] [pid 10920:tid 10920] [client 64.31.55.45:54040] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||bevensangi.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bevensangi.com"] [uri "/db_backup.sql"] [unique_id "akXF51bLo5asGk4sFO28mQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 01:42:05
(8 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 21:41:58.802349 2026] [security2:error] [pid 2291:tid 2291] [client 64.31.55.45:64722] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||bencramer.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bencramer.org"] [uri "/sql.sql"] [unique_id "akXB5gdBkBzOsUUcwl7r2wAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Baking333
2026-07-02 01:23:04
(8 hours ago)
[redacted] 64.31.55.45 - - [02/Jul/2026:02:23:01 +0100] "GET /wp-content/[redacted] HTTP/1.1" 302 67 ...
show more
[redacted] 64.31.55.45 - - [02/Jul/2026:02:23:01 +0100] "GET /wp-content/[redacted] HTTP/1.1" 302 6758 0/102504 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15" [redacted] 64.31.55.45 - - [02/Jul/2026:02:23:02 +0100] "GET /wp-content/uploads/[redacted] HTTP/1.1" 302 6758 0/115521 "-" "Mozilla/5.0 (Knoppix; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 01:19:32
(8 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 21:19:25.826522 2026] [security2:error] [pid 22382:tid 22382] [client 64.31.55.45:62927] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||batchovens.net|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "batchovens.net"] [uri "/dump.sql"] [unique_id "akW8nf_lJst9Hbvf9toqiAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-07-02 01:05:12
(9 hours ago)
Abuse Detected (21)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 00:45:25
(9 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 20:45:17.919979 2026] [security2:error] [pid 2788:tid 2788] [client 64.31.55.45:65164] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||aviona.net|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "aviona.net"] [uri "/database.sql"] [unique_id "akW0nU8-8SCwYeyEKh9XYQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 00:29:55
(9 hours ago)
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.ne ...
show more
(mod_security) mod_security (id:210730) triggered by 64.31.55.45 (45-55-31-64.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 20:29:47.884030 2026] [security2:error] [pid 20233:tid 20233] [client 64.31.55.45:53956] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||auditsupports.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "auditsupports.com"] [uri "/data.sql"] [unique_id "akWw-5KvmMNIERXiWm6X3wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack