๐ซ๐ท
Sklurk
2026-07-08 23:59:34
(1 day ago)
Web App Attack
Web App Attack
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐บ๐ธ
TPI-Abuse
2025-12-09 16:35:59
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 11:35:50.763978 2025] [security2:error] [pid 4241:tid 4241] [client 104.207.39.130:20049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "register-yacht-st-kitts-and-nevis.com"] [uri "/.env"] [unique_id "aThP5n__B-oJ1wmc66nLmwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-09 12:52:29
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 07:52:20.540080 2025] [security2:error] [pid 10785:tid 10785] [client 104.207.39.130:16187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fourhillsco.com"] [uri "/.env"] [unique_id "aTgbhI6sGWHs2tbihSbpiQAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-09 07:15:23
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 02:15:15.685148 2025] [security2:error] [pid 5989:tid 5989] [client 104.207.39.130:43749] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dpproductionhk.com"] [uri "/.svn/wc.db"] [unique_id "aTfMg4JgN2kHQQ8PFv9grAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 20:04:11
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 15:04:01.785643 2025] [security2:error] [pid 17934:tid 17934] [client 104.207.39.130:59375] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toolsandtutorialsforauthors.com"] [uri "/.env"] [unique_id "aTXdsaYqY2b5wieqvNoMMQAAAD8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 13:33:13
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:33:09.524448 2025] [security2:error] [pid 27971:tid 27971] [client 104.207.39.130:39041] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hope4elsalvador.org"] [uri "/.git/HEAD"] [unique_id "aTWCFYvMennUdE8s1VpQxAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 12:46:20
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:46:16.350941 2025] [security2:error] [pid 7821:tid 7821] [client 104.207.39.130:13215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cosmicdebris.org"] [uri "/.git/HEAD"] [unique_id "aTV3GOAOzAkkzkvuctFd3gAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-06 09:59:03
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 04:58:58.857352 2025] [security2:error] [pid 10524:tid 10542] [client 104.207.39.130:25701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "luxury.management"] [uri "/.git/HEAD"] [unique_id "aTP-YoNnbFzwL3ZjXVz6YQAAANA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 05:53:33
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:53:28.542233 2025] [security2:error] [pid 15999:tid 15999] [client 104.207.39.130:33599] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaeltravis.com"] [uri "/.svn/wc.db"] [unique_id "aTJzWBx2JH5a9m2Luuk_JAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-13 22:34:27
(7 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
๐จ๐ฆ
wil.com
2025-10-16 17:15:44
(8 months ago)
GlobalProtect login attempts with user financedropbox.
VPN IP
Brute-Force
๐ท๐ด
clauss
2025-10-06 17:21:32
(9 months ago)
IP reached maximum auth failures for a one day block
Brute-Force
Anonymous
2025-10-06 01:24:45
(9 months ago)
Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.06 is noted in report tim ...
show more
Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.06 is noted in report timestamp
show less
Hacking
Brute-Force
Anonymous
2025-10-05 18:38:18
(9 months ago)
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.05 is noted in report tim ...
show more
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.05 is noted in report timestamp
show less
Hacking
Brute-Force