๐บ๐ธ
mw
2026-07-02 00:00:23
(1 week ago)
GET http://csa-api.kencookpartners.com/wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-setti ...
show more
GET http://csa-api.kencookpartners.com/wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings HTTP/1.1
show less
Web App Attack
Anonymous
2025-12-03 06:00:46
(7 months ago)
botnet
DDoS Attack
๐ฉ๐ช
Packets-Decreaser.NET
2025-11-30 13:09:48
(7 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐ฉ๐ช
Holger
2025-11-27 14:07:14
(7 months ago)
Bruteforce WebAttack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 23:41:57
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 18:41:50.472248 2025] [security2:error] [pid 21101:tid 21101] [client 104.207.39.120:11031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "directnic.ladybehindthecurtain.com"] [uri "/.env"] [unique_id "aSeQPntPRjRx5F_jJjS1IQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 21:13:43
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 16:13:39.165830 2025] [security2:error] [pid 12614:tid 12633] [client 104.207.39.120:20451] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.oplconnect.com"] [uri "/.svn/wc.db"] [unique_id "aSdtg27X7_hqd6aHNZ-zxQAAANE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 16:47:00
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 11:46:53.566074 2025] [security2:error] [pid 24874:tid 24874] [client 104.207.39.120:59565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.theboates.com"] [uri "/.env"] [unique_id "aScu_dCRSnaX-MYelR0u4wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2025-11-26 13:51:08
(7 months ago)
Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 07:09:17
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:09:09.729141 2025] [security2:error] [pid 4446:tid 4446] [client 104.207.39.120:43123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.tmaxnews.macjr.com"] [uri "/.svn/wc.db"] [unique_id "aSVWFdjttB7mHd2JtqTfRAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2025-11-25 06:14:42
(7 months ago)
Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing ...
show more
Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing.
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 05:18:49
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:18:44.564486 2025] [security2:error] [pid 845274:tid 845274] [client 104.207.39.120:58109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.mitchellart.com"] [uri "/.env"] [unique_id "aSU8NOugZq9ychRw5lcjjAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 05:00:39
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:00:34.060868 2025] [security2:error] [pid 18247:tid 18247] [client 104.207.39.120:11883] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.spoffords.com"] [uri "/.env"] [unique_id "aSU38iIhLelJtqOCxS1K3wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 03:56:16
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:56:11.118200 2025] [security2:error] [pid 1816810:tid 1816946] [client 104.207.39.120:15197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nextcloud.brucejoell.com"] [uri "/.svn/wc.db"] [unique_id "aSUo25GZcKt2mCqV6A-3bQAAAkY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2025-11-25 03:45:38
(7 months ago)
Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 03:15:45
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:15:39.663152 2025] [security2:error] [pid 10826:tid 10826] [client 104.207.39.120:32503] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.michaelmoorefield.com"] [uri "/.svn/wc.db"] [unique_id "aSUfWzKYIjvp5jjwHhMu1wAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack