๐ช๐ธ
alferez
2026-07-14 01:17:13
(16 hours ago)
Searching .(env|sql|zip|tar|rar) files
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 19:23:42
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the las ...
show more
(mod_security) mod_security (id:210492) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 15:23:37.346254 2026] [security2:error] [pid 24708:tid 24708] [client 62.240.9.26:44400] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "irises.batw.net"] [uri "/.env"] [unique_id "alU7OdXRpa0ud2W6V7GXegAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
bsoft.de
2026-07-13 06:40:14
(1 day ago)
62.240.9.26 - - [13/Jul/2026:08:40:13 +0200] "GET /phpMyAdmin-2.11.6/ HTTP/1.1" 301 169 "-" "Mozilla ...
show more
62.240.9.26 - - [13/Jul/2026:08:40:13 +0200] "GET /phpMyAdmin-2.11.6/ HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.201 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
show less
Bad Web Bot
Web App Attack
๐ฎ๐น
paoloartone
2026-07-12 05:00:19
(2 days ago)
Reverse proxy TCO: 72 richieste malevole bloccate (scan/exploit/brute-force WordPress) il 11/07/2026 ...
show more
Reverse proxy TCO: 72 richieste malevole bloccate (scan/exploit/brute-force WordPress) il 11/07/2026.
show less
Web App Attack
Hacking
Port Scan
๐ฉ๐ช
big-cloud.nl
2026-07-11 17:48:23
(2 days ago)
Try to access /haardhout-meppel//.env
Web App Attack
๐ช๐ธ
alferez
2026-07-10 16:51:18
(4 days ago)
Searching .(env|sql|zip|tar|rar) files
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 12:53:48
(5 days ago)
(mod_security) mod_security (id:210730) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the las ...
show more
(mod_security) mod_security (id:210730) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 08:53:44.433048 2026] [security2:error] [pid 1201:tid 1226] [client 62.240.9.26:57272] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||emehache.net|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "emehache.net"] [uri "/home.bak"] [unique_id "ak-Z2G9SVELrdUcnTqGtngAAARc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-07-09 05:08:03
(5 days ago)
Unauthorized access to webpage admin
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-09 02:21:13
(5 days ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Savvii
2026-07-08 21:02:02
(5 days ago)
26 attempts against mh-pma-try-ban on eris
Web App Attack
๐ซ๐ท
dynamix
2026-07-07 20:48:17
(6 days ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-06 08:57:24
(1 week ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 03:20:14
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the las ...
show more
(mod_security) mod_security (id:210730) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 23:19:58.282605 2026] [security2:error] [pid 10662:tid 10662] [client 62.240.9.26:37606] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||katisfaction.nl|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "katisfaction.nl"] [uri "/cgi-bin.bak"] [unique_id "akse3t40SP_Eu1zBNeMqAwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 23:19:41
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the las ...
show more
(mod_security) mod_security (id:210730) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 19:19:35.832907 2026] [security2:error] [pid 11322:tid 11322] [client 62.240.9.26:37560] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||demberdatabase.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "demberdatabase.com"] [uri "/wwwroot.bak"] [unique_id "akrmh-xXfAehMvj8CrO-mAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 11:00:43
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the las ...
show more
(mod_security) mod_security (id:210730) triggered by 62.240.9.26 (w3.astratelekom.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 07:00:36.497053 2026] [security2:error] [pid 743:tid 743] [client 62.240.9.26:43180] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||gestiofiscal.com|F|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gestiofiscal.com"] [uri "/php.bak"] [unique_id "akjn1Eu_8bNAWvRsBciP0gAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack