--ad23bf4e-A--
[19/Oct/2025:08:01:56 --0400] aPTTNLhenDUAADHcjiwAAAAW 204.76.203.30 37644 127.0.0.172 80
--ad23bf4e-B--
GET /phpinfo.php HTTP/1.1
X-Real-IP: 204.76.203.30
Host: 74.206.190.81
Connection: close
Accept: */*
User-Agent: Mozilla/5.0 (Linux; U; Android 4.3.1; de-de; GT-I9195 Build/JLS36I) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 CyanogenMod/10.2.1.3/serranoltexx

--ad23bf4e-F--
HTTP/1.1 406 Not Acceptable
Content-Length: 325
Connection: close
Content-Type: text/html; charset=iso-8859-1

--ad23bf4e-E--

--ad23bf4e-H--
Message: Access denied with code 406 (phase 2). Matched phrase "XX" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/active_rules/badbots.conf"] [line "1"] [id "350001"] [rev "1"] [msg "BAD BOT - Detected and Blocked. "] [severity "CRITICAL"]
Action: Intercepted (phase 2)
Stopwatch: 1760875316743669 539 (- - -)
Stopwatch2: 1760875316743669 539; combined=55, p1=44, p2=11, p3=0, p4=0, p5=0, sr=29, sw=0, l=0, gc=0
Response-Body-Transformed: Dechunked
Producer: ModSecurity for Apache/2.9.1 (http://www.modsecurity.org/); 200911012341.
Server: Apache/2.2.31 (Unix) mod_ssl/2.2.31 OpenSSL/1.0.2k-fips PHP/5.3.29 mod_fastcgi/2.4.6
Engine-Mode: "ENABLED"

--ad23bf4e-Z--