๐จ๐ญ
TAS
2026-06-25 03:05:00
(1 week ago)
Received: from web2.m-design.hu (web2.m-design.hu [80.77.123.59])
Thu, 25 Jun 2026 05:05:40 +0200 ( ...
show more
Received: from web2.m-design.hu (web2.m-design.hu [80.77.123.59])
Thu, 25 Jun 2026 05:05:40 +0200 (CEST)
Reply-To: anthony fisher <[email protected] >
Subject: Dringende Antwort
show less
Email Spam
๐ณ๐ฟ
Antinson
2026-03-05 00:09:31
(3 months ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐ฎ๐น
VHosting
2026-03-04 22:10:08
(3 months ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-04 18:05:31
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 04 13:05:27.539567 2026] [security2:error] [pid 25479:tid 25479] [client 80.77.123.59:41574] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mobiletitleclerk.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mobiletitleclerk.com"] [uri "/old-website.bak"] [unique_id "aah0ZywWZmPpEMBp_dcAPQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-03 21:03:57
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 16:03:51.801755 2026] [security2:error] [pid 31173:tid 31173] [client 80.77.123.59:37688] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||susansimmons.net|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "susansimmons.net"] [uri "/old-website.bak"] [unique_id "aadMt0bfZup2nucEtOTQogAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 15:53:31
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 10:53:21.799146 2026] [security2:error] [pid 9731:tid 9731] [client 80.77.123.59:49670] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||louiemobilemixology.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "louiemobilemixology.com"] [uri "/old-website.bak"] [unique_id "aaRg8TC-p_0neLaVYQ74IgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 04:29:42
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 28 23:29:37.136364 2026] [security2:error] [pid 9514:tid 9514] [client 80.77.123.59:37284] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jeffreysbaycabs.com"] [uri "/.env"] [unique_id "aaPAsRxMH8InPBS3eZZYhgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-09 20:11:36
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 09 15:11:31.326166 2026] [security2:error] [pid 26774:tid 26774] [client 80.77.123.59:53066] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||michaelcarrollgreen.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "michaelcarrollgreen.com"] [uri "/old-website.bak"] [unique_id "aWFg8zG_jzE7oN8XfkVNVAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ps-center
2026-01-01 23:20:12
(6 months ago)
C1: Web Attack GET /phpMyAdmin/
GET /Phpmyadmin/
GET /phpmyadmin/
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-31 23:23:33
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 31 18:23:29.150333 2025] [security2:error] [pid 17376:tid 17376] [client 80.77.123.59:51000] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||fortwaynepartybuses.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "fortwaynepartybuses.com"] [uri "/old-website.bak"] [unique_id "aVWwcZBO064FomUPYaYfdgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-31 18:56:29
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 31 13:56:23.674387 2025] [security2:error] [pid 13565:tid 13565] [client 80.77.123.59:46240] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cygnetsilks.com"] [uri "/.env"] [unique_id "aVVx1wv_ZD0lolUy2GwxdwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-20 13:43:32
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 20 08:43:25.841706 2025] [security2:error] [pid 31018:tid 31018] [client 80.77.123.59:53610] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||greatplainswingcaf.org|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "greatplainswingcaf.org"] [uri "/old-website.bak"] [unique_id "aUan_Qa_p0Up0FRRRgTY9QAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-12-20 07:25:34
(6 months ago)
Multiple web server 400 error codes from same source ip
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-18 08:46:00
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 18 03:45:52.595203 2025] [security2:error] [pid 7208:tid 7208] [client 80.77.123.59:48834] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||reunionking.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "reunionking.com"] [uri "/old-website.bak"] [unique_id "aUO_QJ0TYgeKYKsRgaz-xwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-12 22:50:57
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the ...
show more
(mod_security) mod_security (id:210730) triggered by 80.77.123.59 (mail141.tarhelypark.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 12 17:50:51.663689 2025] [security2:error] [pid 28311:tid 28311] [client 80.77.123.59:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ruralcommunitycare.org|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ruralcommunitycare.org"] [uri "/old-website.bak"] [unique_id "aTycS0P7pLx1ei6tm6hVlQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack