๐บ๐ธ
TPI-Abuse
2026-07-17 22:37:28
(31 minutes ago)
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 18:37:25.255012 2026] [security2:error] [pid 26939:tid 26939] [client 18.216.109.116:50382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandboxspeech.org"] [uri "/.env.production"] [unique_id "alqupZIZNWt2dzvucWQUJgAAAA0"], referer: https://www.google.com/search?q=sandboxspeech.org
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-17 22:00:21
(1 hour ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-16.
show less
Web App Attack
SSH
Hacking
๐ฉ๐ช
paissangroup
2026-07-17 19:45:32
(3 hours ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 18:50:14
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 14:50:06.711305 2026] [security2:error] [pid 30225:tid 30225] [client 18.216.109.116:57496] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apsni.net"] [uri "/.env.production"] [unique_id "alp5XqcQ2yaM_DWDcQQZ1gAAAAE"], referer: https://www.google.com/search?q=apsni.net
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-07-17 18:15:32
(4 hours ago)
Web vulnerability probing: /.dev.vars (bogus vhost/SNI)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 18:01:07
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 14:01:00.400623 2026] [security2:error] [pid 1141026:tid 1141026] [client 18.216.109.116:57864] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "annakahle.click"] [uri "/.env.dist"] [unique_id "alpt3NOM8DE4v3_aYa1nmwAAAAE"], referer: https://www.google.com/search?q=annakahle.click
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-17 17:31:46
(5 hours ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 16:08:39
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 12:08:36.153758 2026] [security2:error] [pid 24775:tid 24775] [client 18.216.109.116:53376] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "valuechains4poor.net"] [uri "/.env.test"] [unique_id "alpThKYYrwmVudgbp1hG2wAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
webanyone
2026-07-17 15:45:51
(7 hours ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐ง๐พ
lns.bz
2026-07-17 12:18:53
(10 hours ago)
Too many 404 requests [BY]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 00:41:10
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.216.109.116 (ec2-18-216-109-116.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:41:01.461532 2026] [security2:error] [pid 43258:tid 43258] [client 18.216.109.116:40022] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "guthrieclan.us"] [uri "/.env"] [unique_id "all6HSiXul9PQAhaUsy6SgAAABQ"], referer: https://www.google.com/search?q=guthrieclan.us
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-07-17 00:10:31
(22 hours ago)
Web attack/malicious scanning detected
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-16 22:03:45
(1 day ago)
Auto-ban: >3000 req/min op 2026-07-16
Web App Attack
SSH
Hacking
Anonymous
2026-07-16 21:06:12
(1 day ago)
Blocked: Reason='Suspicious traffic score=100 (review-based detection)'; Requests=30
Hacking
๐บ๐ธ
Matthew Ping
2026-07-16 21:00:04
(1 day ago)
ModSecurity rule 949110 triggered on wp2. Web application attack blocked by CSF/LFD.
Web App Attack
Hacking