๐ฌ๐ง
cg-design.co.uk
2026-06-03 17:57:47
(1 month ago)
(mod_security) mod_security triggered on hostname [redacted] 141.101.98.16 (GB/United Kingdom/-)
SQL Injection
๐ฌ๐ง
sandra361
2026-05-28 22:12:01
(1 month ago)
Port scan detected: 11 attempts across 1 ports (2087). | Evidence: REAPER_TARPIT:IN=enp1s0f0 OUT= SR ...
show more
Port scan detected: 11 attempts across 1 ports (2087). | Evidence: REAPER_TARPIT:IN=enp1s0f0 OUT= SRC=141.101.98.16 LEN=60 TOS=0x00 PREC=0x00 TTL=56 ID=10786 DF PROTO=TCP SPT=9727 DPT=2087 WINDOW=65535 RES=0x00 SYN URGP=0
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-04-09 03:46:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 23:46:28.094550 2026] [security2:error] [pid 3916505:tid 3916505] [client 141.101.98.16:10210] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.fatjesus.com"] [uri "/.env.local"] [unique_id "adchFJIPo09V9lI_C0sVqwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 20:10:33
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 16:10:25.642695 2026] [security2:error] [pid 2987479:tid 2987542] [client 141.101.98.16:12379] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "imasola.com"] [uri "/.env1"] [unique_id "ada2MVXKkTXYIEZsTNnRJQAAAUU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 19:43:57
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 15:43:51.080895 2026] [security2:error] [pid 2543482:tid 2543482] [client 141.101.98.16:11882] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.thepinman.org"] [uri "/.env_backup"] [unique_id "adav9_3LGxvEHpqGQhFVIAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 18:45:58
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 14:45:47.331543 2026] [security2:error] [pid 3197818:tid 3197818] [client 141.101.98.16:11057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.intnlc.org"] [uri "/var/www/html/.env"] [unique_id "adaiW-YilkUnH-FJSbRtJgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 18:30:41
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 14:30:36.443799 2026] [security2:error] [pid 3024833:tid 3024833] [client 141.101.98.16:13813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.globalvillagecambodia.org"] [uri "/.env.staging"] [unique_id "adaezGSD9SF6ps-5ZfItdwAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 15:34:55
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 11:34:49.182892 2026] [security2:error] [pid 1951288:tid 1951321] [client 141.101.98.16:10428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kellenlee.com"] [uri "/.env.production"] [unique_id "adZ1mbO8dkndRnHFBCrd8AAAAIA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 14:04:48
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 10:04:40.367259 2026] [security2:error] [pid 2456180:tid 2456180] [client 141.101.98.16:12946] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.ferienwohnungen-eva.at"] [uri "/.env_secret"] [unique_id "adZgeM_mooEwIjH36po6jAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 13:17:38
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 09:17:31.203786 2026] [security2:error] [pid 2492423:tid 2492423] [client 141.101.98.16:11580] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.streamlinenz.com"] [uri "/backend/.env"] [unique_id "adZVa64kuGvCtILwoFhyrAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 11:48:51
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 07:48:15.900732 2026] [security2:error] [pid 2168926:tid 2168926] [client 141.101.98.16:9835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kulacenterky.com"] [uri "/web/.env"] [unique_id "adZAf1vasdDryX1tFMobbQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 09:19:09
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 05:19:02.814101 2026] [security2:error] [pid 2033441:tid 2033441] [client 141.101.98.16:13624] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.computerpartsrecovery.com"] [uri "/.envrc"] [unique_id "adYdhse8uR2Nx8rB3xOxhgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 08:53:04
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 04:52:52.684802 2026] [security2:error] [pid 2111258:tid 2111258] [client 141.101.98.16:14257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.gunningphysio.com"] [uri "/docker/.env"] [unique_id "adYXZIyECZwjmcPdPj73cgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 07:30:43
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 03:30:10.237598 2026] [security2:error] [pid 1909130:tid 1909130] [client 141.101.98.16:13990] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.halblog.com"] [uri "/app/.env"] [unique_id "adYEAgSMa5iSnHX6uC_DpgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 06:32:58
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 02:32:51.172884 2026] [security2:error] [pid 3073994:tid 3074001] [client 141.101.98.16:9547] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "totalbodycare753.kylight.com"] [uri "/.env.old"] [unique_id "adX2k6k8YjoklksvBBcZyQAAAQU"]
show less
Brute-Force
Bad Web Bot
Web App Attack