Anonymous
2026-03-17 17:05:07
(3 months ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: PE, Attack patterns: Back ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: PE, Attack patterns: Backup file probing, Cloud secrets probing
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
ReporTR
2026-03-16 18:15:34
(3 months ago)
Fail2Ban plesk-modsecurity: 3 attempts from 161.132.37.232 (Country: <country>, <rdns>)
Hacking
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-03-16 17:27:38
(3 months ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ช๐ธ
loadsoporte
2026-03-16 17:09:14
(3 months ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
Anonymous
2026-03-16 17:04:54
(3 months ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: PE, Attack patterns: Back ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: PE, Attack patterns: Backup file probing, Cloud secrets probing
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-16 16:47:25
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 16 12:47:18.998538 2026] [security2:error] [pid 28352:tid 28352] [client 161.132.37.232:54226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "xyncom.com"] [uri "/api/.env"] [unique_id "abg0FmvoBKGRFCS_W86-aAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Penny Packer
2026-03-16 16:43:04
(3 months ago)
Fail2Ban apache-404
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-16 15:56:35
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 16 11:56:27.967994 2026] [security2:error] [pid 4327:tid 4327] [client 161.132.37.232:49966] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "breviarius.com"] [uri "/.env"] [unique_id "abgoK-J-0UyaPbmU9ULknAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-16 14:59:43
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 16 10:59:36.391507 2026] [security2:error] [pid 20674:tid 20674] [client 161.132.37.232:56646] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "title16.com"] [uri "/.env"] [unique_id "abga2NGPIkB9hdSum87mTAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
interbiznw.com
2026-03-16 14:50:36
(3 months ago)
malicious-web-requests-vulnerability-scanning
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-16 02:19:14
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 15 22:19:08.059301 2026] [security2:error] [pid 30889:tid 30889] [client 161.132.37.232:43178] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rejuvenationresources.com"] [uri "/.env"] [unique_id "abdonFpRcU0XeZDBCMSPPAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-03-16 00:26:22
(3 months ago)
Multiple WAF Violations
Web App Attack
Anonymous
2026-03-15 19:03:29
(3 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-03-15 19:02:56
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 161.132.37.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 15 15:02:30.208389 2026] [security2:error] [pid 21572:tid 21586] [client 161.132.37.232:56386] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hobfl.com"] [uri "/admin/.env"] [unique_id "abcCRpe_uj5lI_hDFK8WpgAAAUo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-03-15 15:18:49
(3 months ago)
Web attack/malicious scanning detected
Web App Attack