๐ง๐ช
cmbplf
2026-06-25 05:38:22
(5 days ago)
100 requests with url.path *credentials.json
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-25 03:52:44
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the la ...
show more
(mod_security) mod_security (id:210492) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 23:52:38.325999 2026] [security2:error] [pid 22475:tid 22475] [client 2a10:4646:190::4aec:c91a:58286] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powerkiteforum.com"] [uri "/.env.backup"] [unique_id "ajymBi-jCUXzq6CN6ZE0QAAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-06-25 01:05:03
(5 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 23:19:55
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the la ...
show more
(mod_security) mod_security (id:210492) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 19:19:49.029733 2026] [security2:error] [pid 31128:tid 31128] [client 2a10:4646:190::4aec:c91a:37086] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chopstickhouseevansville.com"] [uri "/.env"] [unique_id "ajxmFUBif24JKojX4D_wSgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-24 22:00:17
(5 days ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-23.
show less
Web App Attack
SSH
Hacking
๐ซ๐ฎ
YF
2026-06-24 19:00:55
(5 days ago)
WordPress content enumeration
Web App Attack
๐ซ๐ท
Baking333
2026-06-24 14:43:30
(6 days ago)
[redacted] 2a10:4646:190::4aec:c91a - - [24/Jun/2026:15:43:28 +0100] "GET /.[redacted] HTTP/1.1" 302 ...
show more
[redacted] 2a10:4646:190::4aec:c91a - - [24/Jun/2026:15:43:28 +0100] "GET /.[redacted] HTTP/1.1" 302 6793 0/214287 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://[redacted]/support/amazonbot)" [redacted] 2a10:4646:190::4aec:c91a - - [24/Jun/2026:15:43:28 +0100] "GET /wp-content/[redacted] HTTP/1.1" 302 6793 0/234735 "-" "Mozilla/5.0 (compatible; Bytespider; spider-feedback@[redacted])"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 02:29:45
(6 days ago)
(mod_security) mod_security (id:210730) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the la ...
show more
(mod_security) mod_security (id:210730) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:29:41.478863 2026] [security2:error] [pid 3870:tid 3870] [client 2a10:4646:190::4aec:c91a:38280] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||brickyardinn.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brickyardinn.com"] [uri "/wp-content/debug.log"] [unique_id "ajtBFek3VGCAAN3ysXh8owAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 01:11:59
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the la ...
show more
(mod_security) mod_security (id:210492) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 21:11:52.547375 2026] [security2:error] [pid 15026:tid 15026] [client 2a10:4646:190::4aec:c91a:35928] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "briannalls.com"] [uri "/.env.example"] [unique_id "ajsu2Jlc7GezAxSA5GQVfQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-23 22:53:55
(6 days ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 22:32:55
(6 days ago)
(mod_security) mod_security (id:210730) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the la ...
show more
(mod_security) mod_security (id:210730) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 18:32:49.522586 2026] [security2:error] [pid 26240:tid 26240] [client 2a10:4646:190::4aec:c91a:55178] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||brentsagnotti.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brentsagnotti.com"] [uri "/wp-content/debug.log"] [unique_id "ajsJkZbn-DtpI18XazgH9gAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-06-23 21:58:40
(6 days ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ฌ๐ง
Aetherweb Ark
2026-06-23 19:45:19
(6 days ago)
(mod_security) mod_security (id:949110) triggered by 2a10:4646:190::4aec:c91a (Unknown): N in the la ...
show more
(mod_security) mod_security (id:949110) triggered by 2a10:4646:190::4aec:c91a (Unknown): N in the last X secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 18:00:58
(6 days ago)
(mod_security) mod_security (id:210730) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the la ...
show more
(mod_security) mod_security (id:210730) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 14:00:48.008929 2026] [security2:error] [pid 26455:tid 26455] [client 2a10:4646:190::4aec:c91a:55214] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||brbcoin.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brbcoin.com"] [uri "/wp-content/debug.log"] [unique_id "ajrJ0ErC-qEIxgCETKJUmAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 15:36:28
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the la ...
show more
(mod_security) mod_security (id:210492) triggered by 2a10:4646:190::4aec:c91a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 11:36:24.054933 2026] [security2:error] [pid 15621:tid 15621] [client 2a10:4646:190::4aec:c91a:45518] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brasscadillac.com"] [uri "/.env.example"] [unique_id "ajqn-B3OZk57Lmfl8dulawAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack