๐ซ๐ท
dynamix
2026-07-01 18:45:21
(1 week ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
dbmwebdesign
2026-07-01 16:15:50
(1 week ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
Anonymous
2026-07-01 16:10:05
(1 week ago)
| [Dangerous/China] Aggressive IP 2408:4001:262:b101:e5ce:ced5:283:aa5d (~30 hits). Type: DoS Defend ...
show more
| [Dangerous/China] Aggressive IP 2408:4001:262:b101:e5ce:ced5:283:aa5d (~30 hits). Type: DoS Defender- Web server 400 error code
show less
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-01 08:37:21
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 04:37:12.976880 2026] [security2:error] [pid 10247:tid 10247] [client 2408:4001:262:b101:e5ce:ced5:283:aa5d:8723] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bookonline.lakewoodranchhairsalon.com"] [uri "/.env.test"] [unique_id "akTRuBjqNf6UpEloAZqX_QAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 05:15:17
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 01:15:11.206626 2026] [security2:error] [pid 14318:tid 14318] [client 2408:4001:262:b101:e5ce:ced5:283:aa5d:2055] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schmerzfrei-und-bewegt.eu"] [uri "/.env.development"] [unique_id "akSiX9Z3SX-kFkVBNvzs8gAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-01 04:26:41
(1 week ago)
Excessive multi-domain requests
Brute-Force
๐ฉ๐ช
ger-stg-sifi1
2026-07-01 03:31:20
(1 week ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 03:23:38
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 23:23:30.722756 2026] [security2:error] [pid 27990:tid 27990] [client 2408:4001:262:b101:e5ce:ced5:283:aa5d:9064] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.goteledata.securitymontana.com"] [uri "/.env.staging"] [unique_id "akSIMpskfF6qKEj60ghKTgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ฌ
Cloudkul Cloudkul
2026-07-01 01:50:57
(1 week ago)
Attempted Not Found (404 status code) requests on our application, more than 30% of their total requ ...
show more
Attempted Not Found (404 status code) requests on our application, more than 30% of their total requests.
show less
Brute-Force
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-01 00:33:26
(1 week ago)
Try to access /.env
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-30 22:40:05
(1 week ago)
Excessive 404/403 errors
Brute-Force
๐ณ๐ฑ
Mangelot Hosting
2026-06-30 22:29:10
(1 week ago)
(modsecurity) srv101 ModSecurity 2408:4001:262:b101:e5ce:ced5:283:aa5d (CN/China/-): 10 in the last ...
show more
(modsecurity) srv101 ModSecurity 2408:4001:262:b101:e5ce:ced5:283:aa5d (CN/China/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 22:27:08
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 18:27:01.920962 2026] [security2:error] [pid 10102:tid 10102] [client 2408:4001:262:b101:e5ce:ced5:283:aa5d:5253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gh057.io"] [uri "/.env~"] [unique_id "akRCtRDGhRRX6qufXEsXkgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 21:44:04
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 17:43:59.826808 2026] [security2:error] [pid 25249:tid 25249] [client 2408:4001:262:b101:e5ce:ced5:283:aa5d:3717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "draindoctor.us"] [uri "/.env"] [unique_id "akQ4n9oCMfF1tOZABtXBHAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 21:20:48
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2408:4001:262:b101:e5ce:ced5:283:aa5d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 17:20:43.946445 2026] [security2:error] [pid 22354:tid 22354] [client 2408:4001:262:b101:e5ce:ced5:283:aa5d:12258] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "desertedge.band"] [uri "/.env.production"] [unique_id "akQzKx2b-BPmcZZk6p0AsAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack