๐บ๐ธ
TPI-Abuse
2026-07-17 07:02:50
(54 minutes ago)
(mod_security) mod_security (id:210492) triggered by 5.255.111.58 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.111.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 03:02:47.209406 2026] [security2:error] [pid 4186222:tid 4186222] [client 5.255.111.58:44798] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "123clearmyticket.com"] [uri "/.env.production"] [unique_id "alnTl6XloA7fuIaDBORraAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 06:34:52
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 5.255.111.58 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.111.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 02:34:48.744188 2026] [security2:error] [pid 526190:tid 526190] [client 5.255.111.58:50658] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "1214productions.com"] [uri "/.env.backup"] [unique_id "alnNCM88cfCV9V1FMDJKHQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
Some Body
2026-07-17 05:20:48
(2 hours ago)
Aggressive web scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 04:20:22
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 5.255.111.58 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.111.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 00:20:15.403252 2026] [security2:error] [pid 334909:tid 334909] [client 5.255.111.58:33270] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestcountryclubs.com"] [uri "/admin/.env"] [unique_id "almtfzXpF8-s5BJ3UVly4wAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-17 03:25:03
(4 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ฉ๐ช
macrob
2026-07-17 03:05:11
(4 hours ago)
2026/07/17 03:04:52 [error] 3984183#3984183: *382652539 access forbidden by rule, client: 5.255.111. ...
show more
2026/07/17 03:04:52 [error] 3984183#3984183: *382652539 access forbidden by rule, client: 5.255.111.58, server: 100fs.org, request: "GET /.next/build-manifest.json HTTP/1.1", host: "100fs.org"
2026/07/17 03:05:00 [error] 3984183#3984183: *382651485 access forbidden by rule, client: 5.255.111.58, server: 100fs.org, request: "GET /.vite/manifest.json HTTP/1.1", host: "100fs.org"
2026/07/17 03:05:09 [error] 3984185#3984185: *382651293 access forbidden by rule, client: 5.255.111.58, server: 100fs.org, request: "GET /dist/.vite/manifest.json HTTP/1.1", host: "100fs.org"
...
show less
Web App Attack
๐ซ๐ท
dynamix
2026-07-17 02:18:47
(5 hours ago)
Multiple WAF Violations
Web App Attack
๐ณ๐ฑ
Site.eu
2026-05-14 03:21:35
(2 months ago)
Excessive 404/403 errors
Brute-Force
๐บ๐ธ
0tsystems
2026-05-13 15:50:16
(2 months ago)
Automated scan detected on 0t.systems: /.env
Web App Attack
๐ฌ๐ง
Axel
2026-05-13 15:08:01
(2 months ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /app/.env Ser ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /app/.env Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐ณ๐ฑ
Mangelot Hosting
2026-05-13 13:40:21
(2 months ago)
(modsecurity) srv102 ModSecurity 5.255.111.58 (NL/The Netherlands/-): 10 in the last 3600 secs; Port ...
show more
(modsecurity) srv102 ModSecurity 5.255.111.58 (NL/The Netherlands/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐ต๐ฑ
lns.bz
2026-05-13 10:20:01
(2 months ago)
Web app attack [PL.Lu]
Exploited Host
Web App Attack
๐ซ๐ท
masterguru
2026-05-13 09:14:36
(2 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:User-Agent. (1100000 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:User-Agent. (1100000-195)
show less
Bad Web Bot