Anonymous
2026-07-09 21:20:06
(2 minutes ago)
suspicious request in access.log
Web App Attack
๐ณ๐ฑ
MacLotsen
2026-07-09 20:13:13
(1 hour ago)
Violated robots.txt
Web Spam
Anonymous
2026-07-09 10:06:05
(11 hours ago)
Trying to access config files
Web App Attack
๐ท๐บ
OK
2026-07-09 09:50:16
(11 hours ago)
HTTP/HTTPS
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 08:41:43
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 64.112.56.149 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 64.112.56.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 04:41:25.945966 2026] [security2:error] [pid 7597:tid 7597] [client 64.112.56.149:34887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whatifandwhynot.xyz"] [uri "/.env.dev"] [unique_id "ak9eta_rnwGMGjS-5GdOHAAAACU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2026-07-09 08:27:07
(12 hours ago)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 05:39:43
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 64.112.56.149 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 64.112.56.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 01:39:25.899473 2026] [security2:error] [pid 675391:tid 675391] [client 64.112.56.149:42773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.nchsfootballgolfouting.com"] [uri "/.env.prod"] [unique_id "ak80DUhIgIwmoogdiTD1eQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 02:18:20
(19 hours ago)
(mod_security) mod_security (id:212620) triggered by 64.112.56.149 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:212620) triggered by 64.112.56.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 22:18:04.065619 2026] [security2:error] [pid 29866:tid 29866] [client 64.112.56.149:35705] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack||easternimport.com|F|2"] [data "Matched Data: <script found within REQUEST_URI: /products.php?catname=barutensils'\\x22><script>alert(68752)</script>&catid=5"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "easternimport.com"] [uri "/products.php"] [unique_id "ak8E3PJe-yxy_7NOPdB_hgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 01:04:17
(20 hours ago)
(mod_security) mod_security (id:210492) triggered by 64.112.56.149 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 64.112.56.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 21:03:54.277917 2026] [security2:error] [pid 11327:tid 11327] [client 64.112.56.149:54367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hanabritgermanshepherds.com"] [uri "/.env.production"] [unique_id "ak7zerVL4ceZoGTWV--5WAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-08 23:36:27
(21 hours ago)
IKE Enforcement Violation.
Hacking
๐จ๐ฆ
polycoda
2026-07-08 21:48:26
(23 hours ago)
๐ฅถ Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27
DDoS Attack
๐ฌ๐ง
AvonleaConsulting
2026-07-08 19:35:36
(1 day ago)
Attempts to probe web pages for vulnerable PHP or other applications
Web App Attack