π«π·
dynamix
2026-07-17 22:54:08
(5 hours ago)
Multiple WAF Violations
Web App Attack
πΊπΈ
rdpguard.com
2026-07-17 22:26:07
(6 hours ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
πΊπΈ
TPI-Abuse
2026-07-17 21:35:51
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 17:35:47.609711 2026] [security2:error] [pid 4138038:tid 4138038] [client 205.237.111.162:7326] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noisepie.com"] [uri "/.git/config"] [unique_id "alqgM_f5lbGlTxOsp9eRXgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π¦
Mediashaker
2026-07-17 18:10:53
(10 hours ago)
(apache-scanners) Failed apache-scanners trigger with match [redacted] from 205.237.111.162 (RO/Roma ...
show more
(apache-scanners) Failed apache-scanners trigger with match [redacted] from 205.237.111.162 (RO/Romania/-)
show less
Port Scan
πΊπΈ
TPI-Abuse
2026-07-17 10:17:53
(18 hours ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 06:17:44.980520 2026] [security2:error] [pid 509626:tid 509730] [client 205.237.111.162:13078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "iguanablue.com"] [uri "/.git/config"] [unique_id "aloBSBXb8EgjrviTGENd-AAAAck"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
OptimusGO
2026-07-17 09:48:52
(18 hours ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-07-17 10:48:52 UTC
Log evidence:
205.237.111.162 - - [17/Jul/2026:10:48:51 +0100] "GET /docker-compose.yml HTTP/1.1" 404 118 "-" "Mozilla/5.0 Exposure-Audit"
205.237.111.162 - - [17/Jul/2026:10:48:51 +0100] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 Exposure-Audit"
205.237.111.162 - - [17/Jul/2026:10:48:51 +0100] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 Exposure-Audit"
show less
Port Scan
Brute-Force
πΊπΈ
TPI-Abuse
2026-07-17 07:29:29
(21 hours ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 03:29:25.155106 2026] [security2:error] [pid 409795:tid 409795] [client 205.237.111.162:24236] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "1stadvantageschool.com"] [uri "/wp-config.php"] [unique_id "alnZ1fIXTfiGzn4fVCBVYgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-17 06:25:54
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 02:25:49.222019 2026] [security2:error] [pid 377897:tid 377897] [client 205.237.111.162:50702] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "louisianamasons.com"] [uri "/.git/config"] [unique_id "alnK7QQ6IxiSRzbGc3E_uQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
Aetherweb Ark
2026-07-17 05:35:54
(23 hours ago)
(mod_security) mod_security (id:949110) triggered by 205.237.111.162 (RO/Romania/-): N in the last X ...
show more
(mod_security) mod_security (id:949110) triggered by 205.237.111.162 (RO/Romania/-): N in the last X secs
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-17 04:51:36
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 00:51:31.075473 2026] [security2:error] [pid 12386:tid 12389] [client 205.237.111.162:27726] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cjherbalremedies.com"] [uri "/.git/config"] [unique_id "alm00wzQzp3R8ufx1O2XHQAAAQA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-17 00:39:18
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:39:13.306042 2026] [security2:error] [pid 17387:tid 17387] [client 205.237.111.162:21630] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "printedpartynapkins.com"] [uri "/.git/config"] [unique_id "all5sQp9ZTlHc51b3e4_igAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-17 00:08:35
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:08:28.094458 2026] [security2:error] [pid 13389:tid 13389] [client 205.237.111.162:37328] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artisticheadstones.com"] [uri "/.git/config"] [unique_id "allyfJfGU3rvqFjY1WQb-wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 23:35:49
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 19:35:41.558129 2026] [security2:error] [pid 941:tid 941] [client 205.237.111.162:47232] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "numbulary.com"] [uri "/.git/HEAD"] [unique_id "allqzUfB3MnLJbnnZ7e7sgAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 21:24:26
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 17:24:20.613204 2026] [security2:error] [pid 613:tid 613] [client 205.237.111.162:27634] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "obgynhistory.com"] [uri "/.git/config"] [unique_id "allMBN3sq6_TLJlctifuJwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 20:39:29
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 205.237.111.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 16:39:22.727509 2026] [security2:error] [pid 30520:tid 30520] [client 205.237.111.162:54442] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arofish.us"] [uri "/.git/config"] [unique_id "allBesKZSnCZcLROtBhETwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack