๐ฎ๐ฉ
gonet.home
2026-06-29 00:00:14
(1 week ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-27 00:05:50
(1 week ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-24 01:35:22
(1 week ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-22 02:40:03
(2 weeks ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐บ๐ธ
mnsf
2026-06-12 20:05:30
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
octageeks.com
2026-04-10 04:08:18
(2 months ago)
Wordpress malicious attack:[octawp]
Web App Attack
๐บ๐ธ
mnsf
2026-04-09 02:05:38
(2 months ago)
Scanning/Probing (11)
Brute-Force
Web App Attack
๐จ๐ฆ
lakered
2026-03-31 20:55:40
(3 months ago)
Honeypot Lakered: Access attempt on config (Pattern: .env). IP automatically banned.
Port Scan
๐บ๐ธ
TPI-Abuse
2026-03-20 06:31:22
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 02:31:14.022352 2026] [security2:error] [pid 18330:tid 18330] [client 162.158.154.108:13454] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mathewsdental.com"] [uri "/.env.docker"] [unique_id "abzpsnbon1lQh_1g6uqFiQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 05:54:29
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 01:54:22.941378 2026] [security2:error] [pid 30227:tid 30227] [client 162.158.154.108:13404] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.drayvian.com"] [uri "/.env~"] [unique_id "abzhDk5BtPeDuzgWKAOTfgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 05:23:17
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 01:23:10.306456 2026] [security2:error] [pid 3985:tid 4060] [client 162.158.154.108:12378] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "robertjgarcia.securitymediaservices.com"] [uri "/.env.test"] [unique_id "abzZvmwtECI3TSJa-CIlIgAAAEw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 04:45:20
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 00:45:11.396422 2026] [security2:error] [pid 11178:tid 11178] [client 162.158.154.108:11344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.aktkaro.com"] [uri "/.env.local"] [unique_id "abzQ14p8HfUmyzJI90B_zAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-03-20 04:19:08
(3 months ago)
Fuzzing/Looking for credentials files.
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 10:24:31
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 06:24:25.604731 2026] [security2:error] [pid 21506:tid 21506] [client 162.158.154.108:13950] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.directnicvpn.com"] [uri "/docker/.env"] [unique_id "abvO2Z6nDQWkdwOkA6at9AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:51:15
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.154.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:51:06.993493 2026] [security2:error] [pid 24207:tid 24207] [client 162.158.154.108:9657] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "styxwetdenim.grayhost.net"] [uri "/.env.backup"] [unique_id "abvHCtvX10UDlznNG0w5rgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack