|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 13:19:07.384314 2026] [security2:error] [pid 17351:tid 17358] [client 91.132.198.51:61173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sparkhypnotherapy.com"] [uri "/.env"] [unique_id "afOPC7Ld3kQ_sX2llrapIwAAAIQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 03:09:48.444935 2026] [security2:error] [pid 11430:tid 11430] [client 91.132.198.51:30949] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.handankoc.net|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.handankoc.net"] [uri "/s3cmd.ini"] [unique_id "afBdPHDji6zkhMDXESnNeQAAAAA"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 02:02:34.823509 2026] [security2:error] [pid 21984:tid 21984] [client 91.132.198.51:30965] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.ispeakmusic.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ispeakmusic.com"] [uri "/s3cmd.ini"] [unique_id "ae77-ibj3_e6tnSThr8PMAAAAAE"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 14:24:18.526197 2026] [security2:error] [pid 32638:tid 32638] [client 91.132.198.51:44373] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||tttns.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tttns.com"] [uri "/s3cmd.ini"] [unique_id "ae5YUgBbrW6P31HdXyhURAAAAAo"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 91.132.198.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 09:06:40.460815 2026] [security2:error] [pid 18540:tid 18540] [client 91.132.198.51:58603] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Hudson II/Hudson II/Vermont Bark/Recliner/originals/Thumbs.db"] [unique_id "abVdYFg4WgfPjqeHlu3C8QAAABc"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Hudson%20II/Hudson%20II/Vermont%20Bark/Recliner/originals/
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฆ๐น
begou.dev
|
|
[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/1723
|
Port Scan
|
|
|
๐จ๐ญ
backslash
|
|
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
|
Bad Web Bot
|
|
|
๐ฑ๐ป
garmtech.com
|
|
IM360 WAF: Attempt to upload malware
|
Hacking
|
|
|
๐จ๐ญ
backslash
|
|
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
|
Bad Web Bot
|
|
|
๐ณ๐ฑ
jjnxpct
|
|
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ...
show more
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /media/templates/site/landtgoed23/favicon/browserconfig.xml (Rule ID: 930130) - Restricted File Access Attempt
show less
|
Hacking
Web App Attack
|
|