Anonymous
2026-07-03 17:33:52
(23 hours ago)
suricata IPS/IDS detection, ruleset ET SCAN WordPress Scanner Performing Multiple Requests to Window ...
show more
suricata IPS/IDS detection, ruleset ET SCAN WordPress Scanner Performing Multiple Requests to Windows Live Writer XML
show less
Port Scan
๐ฉ๐ช
srtzero
2026-06-11 06:03:37
(3 weeks ago)
172.71.164.108 - - [11/Jun/2026:08:03:37 +0200] "GET /wp-admin/install.php?step=1 HTTP/2.0" 404 162 ...
show more
172.71.164.108 - - [11/Jun/2026:08:03:37 +0200] "GET /wp-admin/install.php?step=1 HTTP/2.0" 404 162 "-" "http://convergencegaming.net/wp-admin/install.php?step=1"
...
show less
Port Scan
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-09 14:18:44
(3 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ซ๐ท
masterguru
2026-04-07 01:10:24
(2 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:cf-worker. (5025-201)
Hacking
๐ฉ๐ช
abdubhai
2026-04-06 05:12:51
(2 months ago)
172.71.164.108 - - [06/Apr/2026:
...
Brute-Force
๐บ๐ธ
mnsf
2026-04-06 02:05:38
(2 months ago)
Too many Status 40X (12)
Scanning/Probing (27)
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2026-04-06 01:17:06
(2 months ago)
Multiple WAF Violations
Web App Attack
๐ซ๐ท
masterguru
2026-04-05 06:53:57
(2 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:cf-worker. (5025-196)
Hacking
๐บ๐ธ
mnsf
2026-04-04 23:05:24
(2 months ago)
Scanning/Probing (14)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 22:20:46
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 18:20:40.877314 2026] [security2:error] [pid 3411:tid 3411] [client 172.71.164.108:9734] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.raaksystems.com"] [uri "/.env.local"] [unique_id "adGOuLOQjRqP8XWfPHsa0gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 06:48:00
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 02:47:56.337629 2026] [security2:error] [pid 14939:tid 14939] [client 172.71.164.108:12833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.sarahingber.com"] [uri "/private/.env"] [unique_id "adC0HIrrCg98qJIV_6jUfAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-04-04 03:47:17
(3 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:cf-worker. (5025-193)
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-03 21:28:48
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 17:28:44.732278 2026] [security2:error] [pid 18463:tid 18489] [client 172.71.164.108:10742] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.appraisalteam.net"] [uri "/.env1"] [unique_id "adAxDP4PZhTC1o_frru1WgAAARg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 19:29:04
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 15:28:57.113251 2026] [security2:error] [pid 25410:tid 25410] [client 172.71.164.108:12079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.explorediablo.com"] [uri "/.git/refs/heads/main"] [unique_id "adAU-YCGM2OSw54bgDcbcgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 19:08:35
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 15:08:24.436982 2026] [security2:error] [pid 14677:tid 14677] [client 172.71.164.108:10751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alphabravocharters.com"] [uri "/.env.local"] [unique_id "adAQKNH87mi0EG-_aYNxtAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack