Anonymous
2026-07-12 19:03:25
(16 hours ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing
show less
Bad Web Bot
Web App Attack
๐ธ๐ช
konseptit
2026-07-11 20:20:53
(1 day ago)
(mod_security) mod_security triggered on hostname [redacted] 15.204.89.69 (US/United States/vps-a332 ...
show more
(mod_security) mod_security triggered on hostname [redacted] 15.204.89.69 (US/United States/vps-a3323acc.vps.ovh.us)
show less
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-11 19:55:42
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 15:55:34.440894 2026] [security2:error] [pid 1637:tid 1637] [client 15.204.89.69:33088] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gemexpressions.com"] [uri "/.env"] [unique_id "alKftrIvaAAopTXmuHnlSQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-11 19:13:12
(1 day ago)
Bot / seems abusive / Apache connections: 33
DDoS Attack
Web Spam
Bad Web Bot
Web App Attack
๐ฌ๐ง
Greg Poulson
2026-07-11 19:00:09
(1 day ago)
Our website was hit by this DDOS at a rate of 6 in 5 minutes.
DDoS Attack
Web Spam
Brute-Force
๐ณ๐ด
jad-abuse
2026-07-11 18:29:52
(1 day ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: actuator, ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: actuator, server_status, env_probe, source_backup, git_exposure, config_backup, aws_creds, db_dump. Observed by 1 sensor(s); 151 hits.
show less
Hacking
Brute-Force
Web App Attack
Anonymous
2026-07-11 18:04:22
(1 day ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 17:56:53
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 13:56:46.779240 2026] [security2:error] [pid 4567:tid 4585] [client 15.204.89.69:60196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "flapjacktoys.com"] [uri "/.env"] [unique_id "alKD3vVnWOZS0ugIlBKReQAAANA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-11 17:45:59
(1 day ago)
15.204.89.69 - - [12/Jul/2026:01:45:43 +0800] "GET /include/fbox/jquery.fancybox.pack.js.map HTTP/1. ...
show more
15.204.89.69 - - [12/Jul/2026:01:45:43 +0800] "GET /include/fbox/jquery.fancybox.pack.js.map HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
15.204.89.69 - - [12/Jul/2026:01:45:54 +0800] "GET /include/jBreadCrumb/js/jquery.jBreadCrumb.1.1.js.map HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
15.204.89.69 - - [12/Jul/2026:01:45:55 +0800] "GET /include/js/jquery.jqtransform.js.map HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
15.204.89.69 - - [12/Jul/2026:01:45:56 +0800] "GET /include/js/jquery.nivo.slider.pack.js.map HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
15.204.89.69 - - [12/Jul/2026:01:45:57 +0800] "GET /include/js/jquery.toastmessage.js.map HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
15.204.89.69 - - [12/Jul/2026:01:45:58 +0800] "GET /include/js/jquery.watermark.min.js.map HTTP/1.1" 404
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 17:35:52
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 13:35:47.542975 2026] [security2:error] [pid 2360:tid 2385] [client 15.204.89.69:55078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fostexlaw.com"] [uri "/.env"] [unique_id "alJ-85fy0p72Cgt8UzHSGgAAANc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 17:11:53
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 13:11:48.461316 2026] [security2:error] [pid 15417:tid 15417] [client 15.204.89.69:42998] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "geceindia.com"] [uri "/.env"] [unique_id "alJ5VHCWxiWdbQKKLcYNhgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-07-11 16:44:17
(1 day ago)
Web attack/malicious scanning detected
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-11 16:17:01
(1 day ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-11 16:09:14
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 15.204.89.69 (vps-a3323acc.vps.ovh.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 12:09:09.893267 2026] [security2:error] [pid 16716:tid 16716] [client 15.204.89.69:36330] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gnquivers.com"] [uri "/.env"] [unique_id "alJqpb2q8rnV5cT1gtwhWwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-11 15:48:33
(1 day ago)
Banned by Fail2Ban on server
Web App Attack