๐บ๐ธ
TPI-Abuse
2026-07-06 01:09:39
(9 minutes ago)
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 21:09:35.096990 2026] [security2:error] [pid 19272:tid 19272] [client 180.242.58.214:18054] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pjv.us"] [uri "/.env"] [unique_id "aksAT5hp9ya3zuBXvfZIjgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Sklurk
2026-07-06 01:01:12
(17 minutes ago)
Web App Attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 00:13:32
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 20:13:25.342649 2026] [security2:error] [pid 5584:tid 5584] [client 180.242.58.214:20897] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pinballhistory.com"] [uri "/.env"] [unique_id "akrzJWEndatXayr11pPtVAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 23:35:10
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 19:35:01.734344 2026] [security2:error] [pid 31263:tid 31263] [client 180.242.58.214:8092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trasimeno.ws"] [uri "/.env"] [unique_id "akrqJTQGF_Cy2nVIv92SqQAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
bescared
2026-07-05 23:13:09
(2 hours ago)
F2B - Malicious activity detected. URL Probing. -c23856ef-
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:52:20
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:52:15.307232 2026] [security2:error] [pid 15483:tid 15483] [client 180.242.58.214:29351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "healthycaregiving.com"] [uri "/.env"] [unique_id "akrgHwLO96-YvLaChPa-awAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-07-05 22:38:30
(2 hours ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:17:33
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:17:26.500601 2026] [security2:error] [pid 1934:tid 1954] [client 180.242.58.214:9623] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maxpowered.jp"] [uri "/.env"] [unique_id "akrX9mhRN1e4k-gS8mnucwAAAI4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
tutaim.com
2026-07-05 22:00:07
(3 hours ago)
โ [06/07/26] This IP has been detected performing multiple attacks on websites (3 attempts blocked). ...
show more
โ [06/07/26] This IP has been detected performing multiple attacks on websites (3 attempts blocked). Potential malicious activity.
show less
Brute-Force
SSH
Web App Attack
FTP Brute-Force
๐บ๐ธ
kosada.com
2026-07-05 21:03:43
(4 hours ago)
Web vulnerability probing: /administrator/
Web App Attack
๐ง๐ช
voormedia
2026-07-05 20:30:51
(4 hours ago)
Accessed trap at '/wp-login.php'
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 20:03:44
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 180.242.58.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 16:03:36.181438 2026] [security2:error] [pid 30139:tid 30139] [client 180.242.58.214:11113] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rimworld.com"] [uri "/.env"] [unique_id "akq4mKS1QSUsYqnC_D16GAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-05 19:05:18
(6 hours ago)
Blocked: Reason='Suspicious traffic score=90 (review-based detection)'; Requests=7
Hacking
๐ฉ๐ช
Vegascosmetics
2026-07-05 19:00:13
(6 hours ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after repeated server errors (fuzzing). Vegas ...
show more
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after repeated server errors (fuzzing). Vegas Security
show less
Hacking
Exploited Host
Web App Attack
๐ซ๐ท
LRob
2026-07-05 18:40:36
(6 hours ago)
CrowdSec: crowdsecurity/http-admin-interface-probing | req: ["/administrator/","/wp-login.php","/man ...
show more
CrowdSec: crowdsecurity/http-admin-interface-probing | req: ["/administrator/","/wp-login.php","/manager/"] | UA: ["Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"]
show less
Hacking