๐ซ๐ท
Sklurk
2026-07-16 00:26:47
(19 hours ago)
Web App Attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 21:38:05
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:37:57.947889 2026] [security2:error] [pid 1491557:tid 1491557] [client 65.111.30.175:10287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garon.us"] [uri "/.env"] [unique_id "aYpTtVv-x9371z4zT7jbvwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 20:34:51
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:34:46.750008 2026] [security2:error] [pid 19341:tid 19437] [client 65.111.30.175:50639] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gamecrazy.us"] [uri "/api/.git/config"] [unique_id "aYpE5kYsChRAU7ugYZ3N3QAAAQ0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 05:22:22
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 00:22:12.660948 2026] [security2:error] [pid 1236:tid 1236] [client 65.111.30.175:33863] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fundingworkingcapital.com"] [uri "/.env.staging"] [unique_id "aYlvBLxNxdiRYvSiI_jk6AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 04:18:50
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 23:18:36.619072 2026] [security2:error] [pid 21261:tid 21261] [client 65.111.30.175:37449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fullbladderclub.com"] [uri "/.env.save"] [unique_id "aYlgHHkVCsvLq1hc7N9pxQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 03:49:55
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 22:49:49.408553 2026] [security2:error] [pid 29749:tid 29749] [client 65.111.30.175:53817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fuegolounge813.com"] [uri "/new/.git/config"] [unique_id "aYlZXXW83i0YA7F7ww7MYAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 03:25:53
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.30.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 22:25:48.642643 2026] [security2:error] [pid 25103:tid 25103] [client 65.111.30.175:21767] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fuentevictoria.com"] [uri "/backend/.env"] [unique_id "aYlTvBhOCIIfzEhf5cKT1QAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2025-12-28 17:31:26
(6 months ago)
IM360 WAF: Attempt to upload malware
Hacking
๐บ๐ธ
RLDD
2025-10-12 22:22:11
(9 months ago)
WP login attempts -exo
Brute-Force
๐ฉ๐ช
Packets-Decreaser.NET
2025-10-07 17:14:09
(9 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐ง๐ช
cmbplf
2025-10-04 09:24:32
(9 months ago)
1.661 requests with url.path */xmlrpc.php
Brute-Force
Bad Web Bot
๐ณ๐ฑ
EGP Abuse Dept
2024-10-09 01:50:04
(1 year ago)
Unauthorized connection to RDP port 3389
Port Scan
Hacking
Anonymous
2024-08-18 16:55:34
(1 year ago)
BruteForce IMAP/POP3
Brute-Force
Anonymous
2024-07-13 00:41:43
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH