๐บ๐ธ
TPI-Abuse
2026-06-08 07:45:07
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:44:59.642884 2026] [security2:error] [pid 25600:tid 25600] [client 2a02:4780:13:989:0:220a:db9a:1:65004] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "versahealthcare.com"] [uri "/.env.save"] [unique_id "aiZy-2kstTuGo1IkvKUCpQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 04:33:29
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 00:33:21.705317 2026] [security2:error] [pid 2597:tid 2597] [client 2a02:4780:13:989:0:220a:db9a:1:41362] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leadinglogan.com"] [uri "/api/.env"] [unique_id "aiZGEaxzXZLBmq-09eeSiwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-06-08 04:10:26
(3 weeks ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐บ๐ธ
9LEVEL.com.br
2026-06-08 00:35:35
(3 weeks ago)
Blocked by Fail2ban for traefik-404 abuse
Web App Attack
๐ฉ๐ช
dbmwebdesign
2026-06-07 16:30:18
(3 weeks ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐ซ๐ท
dynamix
2026-06-07 15:57:07
(3 weeks ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
LRob.fr
2026-06-07 14:00:06
(3 weeks ago)
Repeated 404 errors, blocked by Fail2ban in custom-404 jail
Bad Web Bot
๐ฉ๐ช
big-cloud.nl
2026-06-04 14:53:44
(3 weeks ago)
Try to access /.env
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 05:26:43
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 01:26:31.040994 2026] [security2:error] [pid 32357:tid 32357] [client 2a02:4780:13:989:0:220a:db9a:1:44230] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chandlerowen.com"] [uri "/.env"] [unique_id "aiEMh5C_eAeLuDkX_1V-LAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 03:52:50
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 23:52:42.158838 2026] [security2:error] [pid 17175:tid 17175] [client 2a02:4780:13:989:0:220a:db9a:1:18248] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "3dcounty.com"] [uri "/core/.env"] [unique_id "aiD2ijuy0WXiA7kGsoqswgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 01:14:53
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 21:14:43.440774 2026] [security2:error] [pid 19839:tid 19839] [client 2a02:4780:13:989:0:220a:db9a:1:25122] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "7319atwood.com"] [uri "/admin/.env"] [unique_id "aiDRg-SF77Qd2QQ33xoQdQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-03 21:34:05
(3 weeks ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
ipblock.com
2026-06-03 21:18:00
(3 weeks ago)
IPBlock protected site ID [3390-wh].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-06-03 15:43:16
(3 weeks ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 12:54:51
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:13:989:0:220a:db9a:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 08:54:48.387945 2026] [security2:error] [pid 9238:tid 9238] [client 2a02:4780:13:989:0:220a:db9a:1:32284] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "casagrotto.com"] [uri "/core/.env"] [unique_id "aiAkGB_F1vd1EFug5eGMAQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack