๐บ๐ธ
TPI-Abuse
2026-07-18 20:19:23
(6 minutes ago)
(mod_security) mod_security (id:210492) triggered by 152.53.0.108 (v2202410198761289411.megasrv.de): ...
show more
(mod_security) mod_security (id:210492) triggered by 152.53.0.108 (v2202410198761289411.megasrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 16:19:16.792723 2026] [security2:error] [pid 3441293:tid 3441298] [client 152.53.0.108:56930] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgementz.org"] [uri "/.env"] [unique_id "alvfxMnUhH8M-ahEpMCBrAAAAMI"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
jormaster3k
2026-07-18 19:32:53
(52 minutes ago)
Attack against Apache (too many 404s)
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-18 19:24:24
(1 hour ago)
Excessive multi-domain requests
Brute-Force
๐ฉ๐ช
Ba-Yu
2026-07-18 18:39:02
(1 hour ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐ฎ๐น
CoreTech srl
2026-07-18 18:31:03
(1 hour ago)
CloudLinux/Plesk alert - host=cloudlinux5 dominio=fontanacontarini.it ip=152.53.0.108 richieste=708 ...
show more
CloudLinux/Plesk alert - host=cloudlinux5 dominio=fontanacontarini.it ip=152.53.0.108 richieste=708 rischio=ALTO score=19 motivi=molte_richieste,molte_uri_uniche,molti_404,ua_script_bot,path_sospetti,api cat_id=21,19 periodo=10min
show less
Web App Attack
Bad Web Bot
๐บ๐ธ
agenciahypelab.com.br
2026-07-18 18:04:57
(2 hours ago)
WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER
Brute-Force
SSH
๐ฉ๐ช
FeG Deutschland
2026-07-18 17:24:05
(3 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 17:01:03
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 152.53.0.108 (v2202410198761289411.megasrv.de): ...
show more
(mod_security) mod_security (id:210492) triggered by 152.53.0.108 (v2202410198761289411.megasrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 13:00:54.450511 2026] [security2:error] [pid 2319826:tid 2319826] [client 152.53.0.108:62645] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "famagustacyprus.eu"] [uri "/.env.bak"] [unique_id "aluxRhgltAcoHDqikp6U5wAAADI"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 16:39:27
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 152.53.0.108 (v2202410198761289411.megasrv.de): ...
show more
(mod_security) mod_security (id:210492) triggered by 152.53.0.108 (v2202410198761289411.megasrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 12:39:23.183151 2026] [security2:error] [pid 22144:tid 22144] [client 152.53.0.108:61085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "expertprofessionalcleaners.com"] [uri "/.env.backup"] [unique_id "alusO0EspWybMe679fhw_QAAAAA"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-18 16:32:00
(3 hours ago)
Fail2Ban: ModSecurity detected a web application attack.
Bad Web Bot
Web App Attack
๐ช๐ธ
alferez
2026-07-18 16:11:22
(4 hours ago)
Searching .(env|sql|zip|tar|rar) files
Hacking
Exploited Host
Web App Attack
๐ฉ๐ช
Petros Stefanakis
2026-07-18 15:33:21
(4 hours ago)
(mod_security) mod_security triggered on hostname [redacted] 152.53.0.108 (AT/Austria/v2202410198761 ...
show more
(mod_security) mod_security triggered on hostname [redacted] 152.53.0.108 (AT/Austria/v2202410198761289411.megasrv.de)
show less
SQL Injection
๐ณ๐ฑ
Savvii
2026-07-18 15:17:15
(5 hours ago)
20 attempts against mh_ha-misbehave-ban on ceres
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 15:08:10
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 152.53.0.108 (v2202410198761289411.megasrv.de): ...
show more
(mod_security) mod_security (id:210492) triggered by 152.53.0.108 (v2202410198761289411.megasrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 11:08:05.318065 2026] [security2:error] [pid 23211:tid 23229] [client 152.53.0.108:57467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emehache.com"] [uri "/.env.local"] [unique_id "aluW1XgAV-wv0Rnj6btQLAAAABA"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
paissangroup
2026-07-18 15:07:50
(5 hours ago)
Multiple WAF Violations
Web App Attack