Anonymous
2026-07-08 09:28:04
(1 week ago)
LH-Watcher: FAKE_ID [Fake Googlebot]
Bad Web Bot
๐จ๐ญ
backslash
2026-06-10 09:57:03
(1 month ago)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-01-27 02:53:21
(5 months ago)
(mod_security) mod_security (id:240950) triggered by 45.39.15.143 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240950) triggered by 45.39.15.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 26 21:53:13.525898 2026] [security2:error] [pid 16656:tid 16682] [client 45.39.15.143:56175] ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)||whm.kettlehill.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "whm.kettlehill.net"] [uri "/secure/QueryComponentRendererValue!Default.jspa"] [unique_id "aXgomT4D1upuVdMC6K4G5QAAAFc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-17 09:40:26
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 45.39.15.143 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 45.39.15.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 04:40:22.333660 2026] [security2:error] [pid 14968:tid 14968] [client 45.39.15.143:36083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/.env"] [unique_id "aWtZBs46gS1LkO8l0GJpCwAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
[email protected]
2025-12-29 13:18:41
(6 months ago)
Attack attempt against Interwebbi servers; *Port Scan* detected from 45.39.15.143 (CH/Switzerland/-) ...
show more
Attack attempt against Interwebbi servers; *Port Scan* detected from 45.39.15.143 (CH/Switzerland/-). 5 hits in the last 485 seconds; IP: 45.39.15.143; Ports: *; Direction: 0; Trigger: PS_LIMIT;
show less
Brute-Force
๐ฎ๐ช
RoboSOC
2025-10-16 12:31:31
(9 months ago)
Drupal Core Remote Code Execution Vulnerability , PTR: PTR record not found
Hacking
Anonymous
2025-07-27 02:07:53
(11 months ago)
Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2025-07-03 13:47:17
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 45.39.15.143 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 45.39.15.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 03 09:46:28.230018 2025] [security2:error] [pid 13360:tid 13395] [client 45.39.15.143:43145] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autoconfig.kettlehill.net"] [uri "/.env.development.local"] [unique_id "aGaJtKUco3AoK6nd7NFBKAAAAJU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-06-01 14:10:02
(1 year ago)
| SQL injection attempt.
Hacking
SQL Injection
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-29 16:30:30
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 45.39.15.143 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 45.39.15.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 12:30:15.567365 2025] [security2:error] [pid 2978219:tid 2978219] [client 45.39.15.143:45061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.farmers123.com"] [uri "/sftp-config.json"] [unique_id "aDiLlwf4pmGYHpGWpm7zaAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack