Anonymous
2026-07-06 18:05:08
(3 hours ago)
WAF repeated trigger detected by Fail2Ban
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 16:34:40
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 12:34:33.653665 2026] [security2:error] [pid 8175:tid 8175] [client 2a02:4780:75:6791::1:53998] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wine.hatfulofrain.com"] [uri "/.env.production"] [unique_id "akvZGfrwFHyQTR-3hHg1FwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-06 16:10:13
(5 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 13:37:09
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 09:37:05.573692 2026] [security2:error] [pid 28640:tid 28640] [client 2a02:4780:75:6791::1:33496] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "what-is-a-smog-check.smogsandiego.com"] [uri "/.env.production"] [unique_id "akuvgUo1QD3uth1tyAP1AwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 12:28:24
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 08:28:20.966504 2026] [security2:error] [pid 24617:tid 24617] [client 2a02:4780:75:6791::1:46396] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "windsorhills.iainrealtor.com"] [uri "/.git/HEAD"] [unique_id "akufZAfDIFu1dm0CGcarhAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-06 11:22:01
(10 hours ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-06 11:02:55
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 07:02:47.999900 2026] [security2:error] [pid 2431:tid 2438] [client 2a02:4780:75:6791::1:47754] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "woofnrose.com"] [uri "/.env.production"] [unique_id "akuLV32ZVYTM7CUsuJH6OAAAAIE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 06:47:38
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 02:47:32.160147 2026] [security2:error] [pid 24700:tid 24700] [client 2a02:4780:75:6791::1:48402] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coloradocultured.com"] [uri "/.git/HEAD"] [unique_id "aktPhBJ9WVqZxg0gTDBRvQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
filstal.org
2026-07-06 06:13:23
(15 hours ago)
Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels an ...
show more
Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels and known vulnerability paths.
show less
Hacking
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 05:51:17
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 01:51:12.176545 2026] [security2:error] [pid 29216:tid 29220] [client 2a02:4780:75:6791::1:40954] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "condominium-management-chicago.com"] [uri "/.env.production"] [unique_id "aktCUL_E267o7I-zUZGxjQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 05:07:17
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 01:07:12.125024 2026] [security2:error] [pid 30735:tid 30735] [client 2a02:4780:75:6791::1:48440] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "concertosupport.com"] [uri "/.env.production"] [unique_id "aks4ANXqTf_GMajb092rawAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-05 22:02:31
(23 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-04.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-05 20:02:49
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:75:6791::1 (srv1804804.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 16:02:42.029782 2026] [security2:error] [pid 13093:tid 13093] [client 2a02:4780:75:6791::1:45314] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eutoc.com.qcyprus.com"] [uri "/.git/HEAD"] [unique_id "akq4YpoZdwyO1Rxh0KnesgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
bazter.pro
2026-07-05 16:30:53
(1 day ago)
Fail2Ban: plesk-bot-aggressive - 15 failures
Port Scan
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-05 14:41:49
(1 day ago)
163 requests with url.path *.git/*
Brute-Force
Bad Web Bot