๐บ๐ธ
TPI-Abuse
2026-06-10 04:00:59
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.n ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 00:00:51.694884 2026] [security2:error] [pid 5188:tid 5188] [client 2001:41d0:ab01::4:0:146:43050] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarawagnergrants.com"] [uri "/.env"] [unique_id "aijhc2m1IdNl-ITmNF-FwwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-06-09 21:37:40
(3 weeks ago)
364 requests with url.path *.git/*
270 requests with url.path *config.json
175 requests with url. ...
show more
364 requests with url.path *.git/*
270 requests with url.path *config.json
175 requests with url.path *aws.yml
168 requests with url.path *.php.bak
127 requests with url.path *.ssh/*
show less
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-09 19:24:36
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.n ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 15:24:33.352596 2026] [security2:error] [pid 31008:tid 31008] [client 2001:41d0:ab01::4:0:146:57300] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "saveourstats.com"] [uri "/.env"] [unique_id "aihocQFW_HWueLHLauDXMAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 18:39:04
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.n ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 14:38:56.426300 2026] [security2:error] [pid 22371:tid 22371] [client 2001:41d0:ab01::4:0:146:53370] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "verenacastle.com"] [uri "/.env"] [unique_id "aihdwLl0Pojrx4U48_4RegAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-09 09:52:07
(3 weeks ago)
Excessive 404/403 errors
Brute-Force
๐ฎ๐น
VHosting
2026-06-08 11:05:03
(3 weeks ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 10:38:00
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.n ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 06:37:53.946047 2026] [security2:error] [pid 11066:tid 11075] [client 2001:41d0:ab01::4:0:146:33912] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "californialifecoach.com"] [uri "/.env"] [unique_id "aiabgfDgEvW9RRR0xNW6-QAAAIc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 03:35:53
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.n ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 23:35:47.511313 2026] [security2:error] [pid 7269:tid 7269] [client 2001:41d0:ab01::4:0:146:56776] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "woodburymeadows.org"] [uri "/.env"] [unique_id "aiY4kypyzmv3BJa-Ns9hywAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-07 15:06:22
(3 weeks ago)
Excessive 404/403 errors
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-06 23:48:17
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.n ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 19:48:11.451474 2026] [security2:error] [pid 31074:tid 31074] [client 2001:41d0:ab01::4:0:146:40616] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "groupof12.com"] [uri "/.env"] [unique_id "aiSxuy-aar6-eOTTbumvHQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Savvii
2026-06-06 23:29:44
(3 weeks ago)
20 attempts against mh-misbehave-ban on ozone
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-06 23:17:40
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.n ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:41d0:ab01::4:0:146 (vps-2b84fada.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 19:17:34.743765 2026] [security2:error] [pid 10834:tid 10965] [client 2001:41d0:ab01::4:0:146:36672] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "southsideeconomic.org"] [uri "/.env"] [unique_id "aiSqjpERcooeCrM1BrKZKwAAAIU"]
show less
Brute-Force
Bad Web Bot
Web App Attack