Anonymous
2026-07-08 09:25:03
(21 hours ago)
LH-Watcher: FAKE_ID [Fake Googlebot]
Bad Web Bot
๐ซ๐ท
bigorre.org
2026-05-30 16:33:36
(1 month ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
Anonymous
2026-02-02 10:44:00
(5 months ago)
fake audit
Web Spam
๐บ๐ธ
TPI-Abuse
2026-01-17 20:03:50
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.39.18.31 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.39.18.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 15:03:43.987085 2026] [security2:error] [pid 12425:tid 12425] [client 45.39.18.31:45489] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/.env.live"] [unique_id "aWvrHx_Asb6Y5hutIUS-fgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-29 18:39:45
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 45.39.18.31 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.39.18.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 13:39:36.215552 2025] [security2:error] [pid 22841:tid 23033] [client 45.39.18.31:51471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.kettlehill.net"] [uri "/.env.dev"] [unique_id "aVLK6LvqJPp5jxktaSFoogAAANM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-13 11:32:49
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.39.18.31 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.39.18.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 06:32:45.013291 2025] [security2:error] [pid 29198:tid 29198] [client 45.39.18.31:38203] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.nbcnewsradio.com"] [uri "/sample.htaccess"] [unique_id "aRXB3cKZPuJ_yk70nHctzQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
dayda.net
2025-10-13 03:21:20
(8 months ago)
p=3232&wp_automatic=download&link=file:///etc/passwd
Bad Web Bot
Anonymous
2025-09-04 07:10:34
(10 months ago)
Malicious activity detected
Hacking
Web App Attack
Anonymous
2025-09-01 16:50:03
(10 months ago)
| Common web attack.
Hacking
SQL Injection
Web App Attack
๐ณ๐ฑ
exxos
2025-09-01 07:08:09
(10 months ago)
Attacks with Bad user agents
Hacking
๐ฎ๐ฉ
hermawan
2025-09-01 06:35:13
(10 months ago)
[Mon Sep 01 13:34:24.778650 2025] [security2:error] [pid 1004393:tid 139982615217856] [client 45.39. ...
show more
[Mon Sep 01 13:34:24.778650 2025] [security2:error] [pid 1004393:tid 139982615217856] [client 45.39.18.31:54585] ModSecurity: Access denied with code 403 (phase 1). Match of "ipMatch 103.166.156.58" against "REMOTE_ADDR" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "372"] [id "440006"] [msg "Connection Close Header"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: close found within REMOTE_ADDR: 45.39.18.31 request_line = GET /index.php/geofisika/555556675-memahami-potensi-gempa-jawa-timur HTTP/1.1 Request URI RAW = /index.php/geofisika/555556675-memahami-potensi-gempa-jawa-timur Request Basename = 555556675-memahami-potensi-gempa-jawa-timur"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/geofisika/555556675-memahami-potensi-gempa-jawa-timur"] [unique_id "aLU-cOXfgm2pcbyz21wH9QAAAAQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1004424] [H
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-08-31 03:28:42
(10 months ago)
(mod_security) mod_security (id:210492) triggered by 45.39.18.31 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.39.18.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 30 23:28:37.163010 2025] [security2:error] [pid 2661274:tid 2661297] [client 45.39.18.31:60315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whm.kettlehill.net"] [uri "/.env.save"] [unique_id "aLPBZeJtFWb4camXdmHSKgAAAFU"]
show less
Brute-Force
Bad Web Bot
Web App Attack