Anonymous
2026-07-02 11:31:22
(1 hour ago)
(caddyscan) Scanner path probe from 103.168.44.87 (ID/Indonesia/87.jkt.cybmedia.com): 5 in the last ...
show more
(caddyscan) Scanner path probe from 103.168.44.87 (ID/Indonesia/87.jkt.cybmedia.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 103.168.44.87 - - [02/Jul/2026:11:31:12 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 103.168.44.87 - - [02/Jul/2026:11:31:16 +0000] "GET /.env.local HTTP/1.1"
[REDACTED] 200 2627 103.168.44.87 - - [02/Jul/2026:11:31:17 +0000] "GET /.env.production HTTP/1.1"
[REDACTED] 200 2627 103.168.44.87 - - [02/Jul/2026:11:31:18 +0000] "GET /.env.development HTTP/1.1"
[REDACTED] 200 2627 103.168.44.87 - - [02/Jul/2026:11:31:20 +0000] "GET /.env.staging HTTP/1.1"
show less
Port Scan
๐ฉ๐ช
bescared
2026-07-02 02:36:33
(9 hours ago)
F2B - Malicious activity detected. URL Probing. -8ff06ede-
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 21:12:32
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:12:27.303279 2026] [security2:error] [pid 30339:tid 30339] [client 103.168.44.87:43262] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "busengakko.org"] [uri "/.env.production"] [unique_id "akWCuxXnBqySE2VtsIkwAQAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 16:50:44
(19 hours ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 12:50:36.713156 2026] [security2:error] [pid 16207:tid 16207] [client 103.168.44.87:36138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "c2cdisasterresponse.org"] [uri "/.env.example"] [unique_id "akVFXPPxqYD6j7RU1R0dHwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 08:59:23
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 04:59:18.527821 2026] [security2:error] [pid 18195:tid 18195] [client 103.168.44.87:58766] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boens.org"] [uri "/.env"] [unique_id "akTW5kYw2vz_0o9U9B74yAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 06:33:48
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 02:33:42.026516 2026] [security2:error] [pid 19387:tid 19387] [client 103.168.44.87:45464] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.blackriverarc.org"] [uri "/.env"] [unique_id "akS0xjCz-dHMi3YKMQWw6AAAAAU"], referer: https://blackriverarc.org/.env
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 06:04:13
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 02:04:09.568453 2026] [security2:error] [pid 32226:tid 32226] [client 103.168.44.87:41240] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bknj2.org"] [uri "/.env"] [unique_id "akSt2WzWpvF6U4DB8p7C0QAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 00:29:20
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 20:29:14.739335 2026] [security2:error] [pid 351:tid 351] [client 103.168.44.87:51708] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bencramer.org"] [uri "/.env.production"] [unique_id "akRfWr_n5pVB0LFBmlaLsQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 22:17:05
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 18:17:01.423310 2026] [security2:error] [pid 6503:tid 6503] [client 103.168.44.87:44948] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bcerg.org"] [uri "/wp-config.php.old"] [unique_id "akRAXQD-UmunwcTFHC1TKAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 16:07:09
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 12:07:04.391317 2026] [security2:error] [pid 17057:tid 17057] [client 103.168.44.87:44240] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "austinbiblestudents.org"] [uri "/.env.local"] [unique_id "akPpqBbz8hoyZdGE1T0BqAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 00:20:06
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 20:20:01.288135 2026] [security2:error] [pid 3549:tid 3549] [client 103.168.44.87:38022] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adventiststoday.org"] [uri "/wp-config.php.bak"] [unique_id "akMLsfv2fJm4rtbNX2zGUgAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 03:32:20
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 23:32:12.670851 2026] [security2:error] [pid 10457:tid 10457] [client 103.168.44.87:42768] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "accsbg.org"] [uri "/.env.production"] [unique_id "akHnPLBhUxUFbo0agOOLAwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
EGP Abuse Dept
2026-06-29 02:57:41
(3 days ago)
Scanning for web/db/file exploits on academicresearchconsortium.org
SQL Injection
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 02:23:05
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 22:22:58.075998 2026] [security2:error] [pid 22201:tid 22201] [client 103.168.44.87:44340] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abneyfoundation.org"] [uri "/wp-config.bak"] [unique_id "akHXAlX7Xd96E_4ZOGAXrQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 01:21:19
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 103.168.44.87 (87.jkt.cybmedia.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 21:21:14.021037 2026] [security2:error] [pid 19565:tid 19588] [client 103.168.44.87:52626] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aafm.org"] [uri "/wp-config.php.save"] [unique_id "akHIigvi8FUz4usJfJ6cmwAAAgw"]
show less
Brute-Force
Bad Web Bot
Web App Attack