๐ซ๐ท
dynamix
2026-06-07 20:33:15
(3 weeks ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ฐ
ScamAware
2026-06-07 09:27:06
(3 weeks ago)
Detected by Cloudflare Security Events via WordPress automation. Detection: sensitive_files (Sensiti ...
show more
Detected by Cloudflare Security Events via WordPress automation. Detection: sensitive_files (Sensitive files, source control, config, and backups). Hits from same IP in last 60 minutes: 9. Unique request paths counted internally: 9. Cloudflare action: block. Cloudflare source: firewallCustom.
show less
Web App Attack
๐ณ๐ฑ
Mangelot Hosting
2026-06-07 04:20:48
(3 weeks ago)
(modsecurity) srv103 ModSecurity 2a02:4780:11:2049:0:2fcd:f027:1 (IN/India/-): 10 in the last 3600 s ...
show more
(modsecurity) srv103 ModSecurity 2a02:4780:11:2049:0:2fcd:f027:1 (IN/India/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐ณ๐ฑ
juutis
2026-06-06 08:56:26
(3 weeks ago)
Multiple WAF abuses - IP blocked
Hacking
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2026-06-06 06:25:00
(3 weeks ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-06 05:22:39
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 01:22:33.729859 2026] [security2:error] [pid 7007:tid 7007] [client 2a02:4780:11:2049:0:2fcd:f027:1:59370] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "couturebikini.com"] [uri "/admin/.env"] [unique_id "aiOumdNl9GEp9-h_j3IYJwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 18:08:57
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 14:08:52.447934 2026] [security2:error] [pid 15010:tid 15010] [client 2a02:4780:11:2049:0:2fcd:f027:1:51872] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "liadisengineering.com"] [uri "/backend/.env"] [unique_id "aiMQtE889c5pirXUNgNSxwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 08:39:25
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 04:39:19.853335 2026] [security2:error] [pid 8944:tid 8944] [client 2a02:4780:11:2049:0:2fcd:f027:1:27078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "delta-pizza.com"] [uri "/api/.env"] [unique_id "aiKLN5SoVilclH1jsFyHmgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐น๐ท
baku.hosting
2026-06-05 06:55:01
(4 weeks ago)
CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 2a02:4780:11:2049:0:2fcd:f027: ...
show more
CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 5 in the last 3600 secs
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 06:25:37
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 02:25:30.564737 2026] [security2:error] [pid 28171:tid 28171] [client 2a02:4780:11:2049:0:2fcd:f027:1:65306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "namadiscount.com"] [uri "/new/.env"] [unique_id "aiJr2gSqqNLIfJxmel6mcAAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 01:58:54
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 21:58:48.813490 2026] [security2:error] [pid 847:tid 847] [client 2a02:4780:11:2049:0:2fcd:f027:1:18510] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2ezgroup.com"] [uri "/admin/.env"] [unique_id "aiItWPpRTNlb7vZioQRz9QAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-04 20:00:15
(4 weeks ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 18:05:08
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 14:05:01.463369 2026] [security2:error] [pid 27774:tid 27774] [client 2a02:4780:11:2049:0:2fcd:f027:1:19844] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oligofoundry.com"] [uri "/member/.env"] [unique_id "aiG-Tfyk_1e-w4Ov7gZ50QAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 14:59:44
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2049:0:2fcd:f027:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 10:59:41.308964 2026] [security2:error] [pid 5390:tid 5390] [client 2a02:4780:11:2049:0:2fcd:f027:1:39060] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kochcreative.com"] [uri "/.env"] [unique_id "aiGS3TaKeHbiDBASBCgUBAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
helios.live
2026-06-04 14:55:40
(4 weeks ago)
2026/06/04 14:55:39 [error] 3145254#3145254: *1900486 access forbidden by rule, client: 2a02:4780:11 ...
show more
2026/06/04 14:55:39 [error] 3145254#3145254: *1900486 access forbidden by rule, client: 2a02:4780:11:2049:0:2fcd:f027:1, server: kocervpn.com, request: "GET /.env HTTP/1.1", host: "kocervpn.com"
2026/06/04 14:55:40 [error] 3145254#3145254: *1900488 access forbidden by rule, client: 2a02:4780:11:2049:0:2fcd:f027:1, server: kocervpn.com, request: "GET /app/.env HTTP/1.1", host: "kocervpn.com"
2026/06/04 14:55:40 [error] 3145254#3145254: *1900488 access forbidden by rule, client: 2a02:4780:11:2049:0:2fcd:f027:1, server: kocervpn.com, request: "GET /admin/.env HTTP/1.1", host: "kocervpn.com"
2026/06/04 14:55:40 [error] 3145254#3145254: *1900488 access forbidden by rule, client: 2a02:4780:11:2049:0:2fcd:f027:1, server: kocervpn.com, request: "GET /api/.env HTTP/1.1", host: "kocervpn.com"
2026/06/04 14:55:40 [error] 3145254#3145254: *1900486 access forbidden by rule, client: 2a02:4780:11:2049:0:2fcd:f027:1, server: kocervpn.com, request: "GET /core/.env HTTP/1.1", host: "kocervpn.com"
...
show less
Web App Attack