๐บ๐ธ
S.O.B.A. Dev.
2025-11-29 09:38:29
(7 months ago)
Threat Blocked by BeeHive from (ASN:16276) (Network:OVH) (Host:soba.dev) (Method:GET) (Protocol:HTTP ...
show more
Threat Blocked by BeeHive from (ASN:16276) (Network:OVH) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2025-11-29T09:38:29Z)
show less
Web Spam
Brute-Force
Web App Attack
Anonymous
2025-11-29 05:05:12
(7 months ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐ช๐ธ
Gem
2025-11-28 23:12:28
(7 months ago)
Unauthorized web scan.
Web App Attack
๐ฌ๐ง
pinguin
2025-11-28 04:48:12
(7 months ago)
Triggered Cloudflare WAF (firewallManaged) from FR.
Action taken: LOG
Protocol: HTTP/1.1 (GET method ...
show more
Triggered Cloudflare WAF (firewallManaged) from FR.
Action taken: LOG
Protocol: HTTP/1.1 (GET method)
Endpoint: /phpinfo.php
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-11-27 20:59:51
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 15:59:45.180080 2025] [security2:error] [pid 1032:tid 1032] [client 5.196.64.200:63936] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thecorinthians.info"] [uri "/.env.save"] [unique_id "aSi7wQxZyp2Q6PH5BxnUXAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-27 10:35:17
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 05:35:14.005686 2025] [security2:error] [pid 1919:tid 1919] [client 5.196.64.200:57528] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dismain.com"] [uri "/tienda/.env"] [unique_id "aSgpYviYqyJIdOx6e4oGVQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 23:54:14
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 18:54:01.588704 2025] [security2:error] [pid 9907:tid 9907] [client 5.196.64.200:53152] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matteozacchino.dev"] [uri "/.env"] [unique_id "aSeTGaBc9_DpPtcc-GQyagAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2025-11-26 12:25:50
(7 months ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 03:44:10
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:44:07.139702 2025] [security2:error] [pid 3538474:tid 3538644] [client 5.196.64.200:58428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "clmtic.es"] [uri "/.env"] [unique_id "aSZ3h13wcnJA0sU4fUvwIAAAAlQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
Valhalla
2025-11-26 01:55:54
(7 months ago)
/beta/.env
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 01:39:03
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in th ...
show more
(mod_security) mod_security (id:210492) triggered by 5.196.64.200 (ns335394.ip-5-196-64.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:38:55.112188 2025] [security2:error] [pid 12441:tid 12441] [client 5.196.64.200:63940] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "headcount.dev"] [uri "/.env.save"] [unique_id "aSUIr2OaYCvSd8Trn8KeRwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
masterguru
2025-11-25 00:18:05
(7 months ago)
Restricted File Access Attempt. Matched phrase "/.env" at REQUEST_FILENAME. (930130-122)
Hacking
Web App Attack
๐ซ๐ท
X13
2025-04-20 09:33:00
(1 year ago)
Web App Attack - 250 lignes en 2 mn
Hacking
SQL Injection
Web App Attack
๐ซ๐ท
UM3
2025-03-16 23:15:59
(1 year ago)
Exim Auth Failed
Brute-Force
๐ณ๐ฑ
Asthriona
2024-08-12 14:51:45
(1 year ago)
1723474304 - 08/12/2024 16:51:44 Host: 5.196.64.200/5.196.64.200 Port: 7 TCP Blocked
...
Port Scan