Anonymous
2026-06-18 21:42:56
(2 weeks ago)
Failed Wordpress Logins
Web App Attack
Anonymous
2026-06-06 19:44:04
(4 weeks ago)
Failed Wordpress Logins
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-03-20 06:49:37
(3 months ago)
141.101.104.107 - - [20/Mar/2026:08:49:34 +0200] "GET /core/.env HTTP/1.1" 404 277 "-" "-"
141.101.1 ...
show more
141.101.104.107 - - [20/Mar/2026:08:49:34 +0200] "GET /core/.env HTTP/1.1" 404 277 "-" "-"
141.101.104.107 - - [20/Mar/2026:08:49:36 +0200] "GET /public/.env HTTP/1.1" 404 277 "-" "-"
...
show less
Web App Attack
๐ท๐ด
ReporTR
2026-02-05 16:11:41
(4 months ago)
Repeated malicious activity detected by Fail2Ban jail 'plesk-apache'. TCP connection completed. IP b ...
show more
Repeated malicious activity detected by Fail2Ban jail 'plesk-apache'. TCP connection completed. IP banned.
show less
Hacking
Web App Attack
๐ง๐ช
voormedia
2025-11-11 01:26:18
(7 months ago)
Accessed trap at '/.aws/credentials'
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-04 21:16:17
(1 year ago)
(mod_security) mod_security (id:240335) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240335) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 04 17:16:10.743311 2025] [security2:error] [pid 3206135:tid 3206135] [client 141.101.104.107:43046] [client 141.101.104.107] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 77.38.105.157 (0+1 hits since last alert)|rodrigoaldecoa.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rodrigoaldecoa.com"] [uri "/xmlrpc.php"] [unique_id "aBfZGtG1f9w0usDZXcLSngAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-03-19 00:56:10
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 18 20:55:59.712110 2025] [security2:error] [pid 863544:tid 863544] [client 141.101.104.107:15814] [client 141.101.104.107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fsm.webfrog.ws"] [uri "/application/.env"] [unique_id "Z9oWH00bFn1f8b1cVaqJwwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
paissangroup
2025-03-07 12:20:08
(1 year ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
paissangroup
2025-03-02 09:26:51
(1 year ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
paissangroup
2025-03-01 07:05:45
(1 year ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-02-25 11:07:09
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 25 06:06:58.072208 2025] [security2:error] [pid 151367:tid 151367] [client 141.101.104.107:46580] [client 141.101.104.107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.hollyranch.com"] [uri "/dev/.env"] [unique_id "Z72kUrxuvrmboJjzJFcQ0QAAAAw"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Study Bitcoin ๐ค
2025-01-09 04:44:52
(1 year ago)
Port probe to tcp/443 (https)
[srv130]
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-31 22:43:04
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 31 17:42:04.550645 2024] [security2:error] [pid 3663053:tid 3663053] [client 141.101.104.107:46648] [client 141.101.104.107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "globetechsecurities.com"] [uri "/services/auth/api/.git/config"] [unique_id "Z3RzPBck2nVaPKUYyTslkgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Study Bitcoin ๐ค
2024-11-07 11:52:30
(1 year ago)
Port probe to tcp/443 (https)
[srv130]
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-11-02 12:54:50
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.104.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 02 08:54:46.985104 2024] [security2:error] [pid 1187180:tid 1187180] [client 141.101.104.107:21436] [client 141.101.104.107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rodrigoaldecoa.com"] [uri "/.env"] [unique_id "ZyYhFr_frKFdD5SyVPXjSAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack