πΊπΈ
webgobe
2026-07-15 09:37:57
(1 day ago)
wew-Joomla User : try to access forms...
Hacking
π«π·
Sklurk
2026-07-08 00:05:22
(1 week ago)
Web App Attack
Web App Attack
Anonymous
2026-04-12 05:52:29
(3 months ago)
Attempt to scan vulnerabilities
Hacking
Anonymous
2026-04-02 07:00:35
(3 months ago)
Forum/form spam
Web Spam
Anonymous
2026-02-15 13:18:11
(5 months ago)
Fuzzing/Looking for credentials files.
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 11:48:07
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:48:03.748045 2026] [security2:error] [pid 1859:tid 1859] [client 65.111.7.204:50129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paguilar.com"] [uri "/.env.local"] [unique_id "aZGyc6UdvluzsxLO4FusDQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 10:59:05
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:59:02.850009 2026] [security2:error] [pid 15301:tid 15301] [client 65.111.7.204:36375] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seethrume.com"] [uri "/api/.env"] [unique_id "aZGm9sgIBaoRgSwdkwmB5AAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
filstal.org
2026-02-15 06:15:31
(5 months ago)
Vulnerability scan activity detected by Fail2Ban
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 05:56:22
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:56:19.110774 2026] [security2:error] [pid 11762:tid 11762] [client 65.111.7.204:23647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "omintara.com"] [uri "/.git/config"] [unique_id "aZFgA6NWPZ0ck1TEsb_YqQAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
Apache
2026-02-15 05:17:26
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (US/United States/-): 5 in the las ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (US/United States/-): 5 in the last 300 secs
show less
Brute-Force
Web App Attack
πΊπΈ
mnsf
2026-02-15 05:05:19
(5 months ago)
Too many Status 40X (12)
Scanning/Probing (12)
Brute-Force
Web App Attack
π©πͺ
DocNetzwerk
2026-02-15 04:31:34
(5 months ago)
(mod_security) mod_security triggered on hostname [redacted] 65.111.7.204 (US/United States/-)
SQL Injection
πΊπΈ
TPI-Abuse
2026-02-15 03:44:34
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:44:31.233089 2026] [security2:error] [pid 2186:tid 2186] [client 65.111.7.204:56567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noreservationslocations.com"] [uri "/backup/.git/config"] [unique_id "aZFBH0gsO2OG9CG7eafdwQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 02:42:06
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:42:02.260858 2026] [security2:error] [pid 4334:tid 4334] [client 65.111.7.204:35663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pluscures.com"] [uri "/frontend/.env"] [unique_id "aZEyepw-fV1voSIeQq7x2wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 01:33:46
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.7.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:33:38.941955 2026] [security2:error] [pid 3889:tid 3889] [client 65.111.7.204:22761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rooksfamily.com"] [uri "/.env"] [unique_id "aZEicrrHaPnG5-NNUfXtpAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack