๐ง๐ช
cmbplf
2026-07-08 11:33:34
(1 hour ago)
158 requests with url.path *credentials.json
152 requests with url.path *config.json
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-08 11:32:56
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 07:32:50.177355 2026] [security2:error] [pid 5987:tid 5987] [client 2a04:c300:400::c2:53806] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.jimrichardart.com"] [uri "/wp-config.php"] [unique_id "ak41YkEb_4BMB45VRc5JWAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 10:19:35
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 06:19:29.040271 2026] [security2:error] [pid 10559:tid 10559] [client 2a04:c300:400::c2:3928] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garantaconsulting.internetnameregistration.com"] [uri "/wp-config.php.bak"] [unique_id "ak4kMbio2zkY4cXq7VuFDgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-08 10:05:06
(2 hours ago)
WAF repeated trigger detected by Fail2Ban
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 09:52:05
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 05:51:58.161973 2026] [security2:error] [pid 12707:tid 12707] [client 2a04:c300:400::c2:54472] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ricarl.vccemail.net"] [uri "/.env"] [unique_id "ak4dvok0hPmCNkFKfKothAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
alferez
2026-07-08 09:51:20
(3 hours ago)
Searching .(env|sql|zip|tar|rar) files
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 09:37:05
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 05:36:57.410456 2026] [security2:error] [pid 20184:tid 20184] [client 2a04:c300:400::c2:4426] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.serviciosjireh.cl"] [uri "/.env.dev"] [unique_id "ak4aOdKcEXbVMVx_5TckxQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-07-08 09:36:00
(3 hours ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 09:07:17
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::c2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 05:07:11.651771 2026] [security2:error] [pid 6235:tid 6235] [client 2a04:c300:400::c2:48912] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jimmyshakes.org"] [uri "/wp-config.php"] [unique_id "ak4TP4MLP5SF513uEiZ7igAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-08 07:20:05
(5 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack