Anonymous
2026-07-10 17:50:41
(3 days ago)
Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy ...
show more
Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy β zero tolerance for exploit scanning. Banned Jul 10, 17:50 UTC. Origin: United Kingdom, London.
show less
Hacking
Bad Web Bot
Web App Attack
π©πͺ
acadeova
2026-06-27 07:37:46
(2 weeks ago)
π¨ Recon detected (nft drop)
SRC=141.101.98.44
Observed=TCP dpt=80 in=enp0s6 ttl=58
Time=recent(journ ...
show more
π¨ Recon detected (nft drop)
SRC=141.101.98.44
Observed=TCP dpt=80 in=enp0s6 ttl=58
Time=recent(journalctl: 10 minutes ago)
Assessment=Generic scanning / reconnaissance (PORT_SCAN)
show less
Port Scan
π¬π§
consul.to
2026-04-19 11:27:25
(2 months ago)
Web attack/malicious scanning detected
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-09 04:38:29
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 00:38:19.767946 2026] [security2:error] [pid 48516:tid 48516] [client 141.101.98.44:10197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.zoticus.com"] [uri "/config/.env"] [unique_id "adctO3OTqoaULgiSr0Rm-AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-09 01:24:23
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 21:24:16.954715 2026] [security2:error] [pid 2756406:tid 2756406] [client 141.101.98.44:13222] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.78cardsofthetarot-tarotmancy-tarot-cards-and-tarot-readings.com"] [uri "/.env"] [unique_id "adb_wHJ5_zc6UR7FG_hXJQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 20:21:36
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 16:21:31.842671 2026] [security2:error] [pid 319778:tid 319778] [client 141.101.98.44:11025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.foreverweddingnapkins.com"] [uri "/.env"] [unique_id "ada4y_Qv3ujg2J3SAmLhWgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 13:09:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 09:09:26.923074 2026] [security2:error] [pid 111122:tid 111122] [client 141.101.98.44:10855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "insearchofgod.org"] [uri "/.env.tmp"] [unique_id "adZThgHlYgdGEgkSmzbXVgAAACo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 09:26:07
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 05:25:56.907841 2026] [security2:error] [pid 2137172:tid 2137172] [client 141.101.98.44:13630] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.linuxforpoets.com"] [uri "/.env2"] [unique_id "adYfJB3AGgRCMZ78imxidQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 04:14:23
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 00:14:19.845930 2026] [security2:error] [pid 1737018:tid 1737035] [client 141.101.98.44:11776] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.oceanstatecollision.com"] [uri "/.env.development"] [unique_id "adXWG5ynscUbErCG_6b2mgAAAQ8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 00:17:55
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 20:17:42.645526 2026] [security2:error] [pid 1946366:tid 1946366] [client 141.101.98.44:11007] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kraftrentals.com"] [uri "/.env.dev.local"] [unique_id "adWepo4KwY8MrRvLn9UogQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-07 11:25:24
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 07:25:11.621657 2026] [security2:error] [pid 1309099:tid 1309099] [client 141.101.98.44:12203] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "labelrecord.com"] [uri "/.env.orig"] [unique_id "adTpl0Tc0uILm0S8Icz6bQAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-07 03:11:54
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 23:11:44.534265 2026] [security2:error] [pid 605448:tid 605448] [client 141.101.98.44:13344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.isyourcorporationsafe.com"] [uri "/.env.orig"] [unique_id "adR18OPyY4hgVsuachCDawAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 20:24:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 16:24:14.999502 2026] [security2:error] [pid 458640:tid 458640] [client 141.101.98.44:13234] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.coolerboxes.com"] [uri "/web/.env"] [unique_id "adQWbhtERB5K0VdUMxxyUQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 19:03:36
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 15:03:30.727996 2026] [security2:error] [pid 24626:tid 24698] [client 141.101.98.44:13941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.yubasutterphotography.com"] [uri "/docker/.env.local"] [unique_id "adQDgpIwe2tcqEm6k2w2-wAAAJA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 17:35:31
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.98.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 13:35:22.788476 2026] [security2:error] [pid 352358:tid 352358] [client 141.101.98.44:11818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.richmondrents.com"] [uri "/private/.env"] [unique_id "adPu2knYFf-_WzaZpwNIyAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack