๐บ๐ธ
Penny Packer
2026-07-15 01:09:48
(5 hours ago)
Fail2Ban apache-tripwires
Web App Attack
๐ฉ๐ช
conseilgouz
2026-07-14 07:04:57
(23 hours ago)
vee-12 : Block return, carriage return, ... characters=>/component/weblinks/weblink/19-car-cover?cat ...
show more
vee-12 : Block return, carriage return, ... characters=>/component/weblinks/weblink/19-car-cover?catid=12'&Itemid=1029&task=weblink.go(')
show less
Hacking
๐ฉ๐ช
conseilgouz
2026-07-13 13:27:41
(1 day ago)
doe-12 : Block return, carriage return, ... characters=>/media/com_cgparallax/js/parallax.js?4c94a5= ...
show more
doe-12 : Block return, carriage return, ... characters=>/media/com_cgparallax/js/parallax.js?4c94a5='(')
show less
Hacking
๐ฉ๐ช
Vegascosmetics
2026-07-13 11:05:53
(1 day ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐บ๐ธ
TPI-Abuse
2026-07-12 03:38:46
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 64.112.56.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 64.112.56.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 23:38:22.201911 2026] [security2:error] [pid 15257:tid 15257] [client 64.112.56.47:60669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aabondwnc.com"] [uri "/.env.bak"] [unique_id "alMMLrmjab5e8cinYZcJCgAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฟ
ptlab
2026-07-11 20:45:04
(3 days ago)
Detected xmlrpc_brute attack from WP-host.
Hacking
Web App Attack
๐ซ๐ท
conseilgouz
2026-07-11 18:58:52
(3 days ago)
loe-11 : Block illegal characters=>/media/vendor/bootstrap/js/alert.min.js?5.3.8=%22%3E%3Cimg%20src= ...
show more
loe-11 : Block illegal characters=>/media/vendor/bootstrap/js/alert.min.js?5.3.8=%22%3E%3Cimg%20src=x%20onerror=alert(qsxss9k7z)%3E(alert(alert)
show less
Hacking
๐บ๐ธ
ipblock.com
2026-07-11 17:29:00
(3 days ago)
IPBlock protected site ID [4055-d][s=02].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
louis77
2026-07-11 16:56:00
(3 days ago)
PHP application attack attempt - Path: /wp-includes/blocks/about.php, Method: GET, UA: Mozilla/5.0 ( ...
show more
PHP application attack attempt - Path: /wp-includes/blocks/about.php, Method: GET, UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 11:13:34
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 64.112.56.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 64.112.56.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 07:13:17.525734 2026] [security2:error] [pid 1769:tid 1788] [client 64.112.56.47:37763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seips.org"] [uri "/.env.development.local"] [unique_id "alIlTSyEZ7n2sYS81OoUzwAAAI4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 10:40:56
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 64.112.56.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 64.112.56.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 06:40:50.648333 2026] [security2:error] [pid 12921:tid 12921] [client 64.112.56.47:37325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "navigateworklife.org"] [uri "/.env.prod.local"] [unique_id "alIdslTz2PyCDh0BvZKXTwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
conseilgouz
2026-07-11 08:22:18
(3 days ago)
joe-12 : Block return, carriage return, ... characters=>/?format=feed'&amp(')
Hacking
๐บ๐ธ
ipblock.com
2026-07-10 11:50:00
(4 days ago)
IPBlock protected site ID [4055-d][s=06].
Persistent 404, vulnerability scanner
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 22:23:03
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 64.112.56.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 64.112.56.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 18:22:40.975012 2026] [security2:error] [pid 27492:tid 27492] [client 64.112.56.47:37119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fiyaplatform.com"] [uri "/.env.stage"] [unique_id "alAfMDvHqs2psfn9l_QtRwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-09 20:16:54
(5 days ago)
64.112.56.47 - - [10/Jul/2026:04:16:51 +0800] "GET /.env.prod.local HTTP/1.1" 200 19012 "-" "Mozilla ...
show more
64.112.56.47 - - [10/Jul/2026:04:16:51 +0800] "GET /.env.prod.local HTTP/1.1" 200 19012 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack