Anonymous
2026-07-01 11:45:34
(1 day ago)
162.158.155.58 - - [01/Jul/2026:13:45:33 +0200] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1. ...
show more
162.158.155.58 - - [01/Jul/2026:13:45:33 +0200] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 441 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
162.158.155.58 - - [01/Jul/2026:13:45:33 +0200] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 246 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
162.158.155.58 - - [01/Jul/2026:13:45:33 +0200] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 441 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
162.158.155.58 - - [01/Jul/2026:13:45:33 +0200] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 246 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
162.158.155.58 - - [01/Jul/2026:13:45:33 +0200] "GET //2019/wp-includes/wlwmanifest.xm
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 09:30:23
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 05:30:18.254315 2026] [security2:error] [pid 27208:tid 27208] [client 162.158.155.58:10418] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.foxmm.com"] [uri "/.env.development"] [unique_id "ab5lKrBvzbLikrrcANSXQwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 03:20:10
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 23:20:05.912187 2026] [security2:error] [pid 6989:tid 6989] [client 162.158.155.58:11688] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.michaelandkatie.us"] [uri "/var/www/.env"] [unique_id "ab4OZUITIiq1Jdwg1HwQ7gAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 01:31:39
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 21:31:34.412518 2026] [security2:error] [pid 26114:tid 26114] [client 162.158.155.58:12649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "8two7.liddlesports.com"] [uri "/api/.env"] [unique_id "ab309j9Hnc85YGPPCGcnQAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 08:14:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 04:13:58.846389 2026] [security2:error] [pid 4686:tid 4686] [client 162.158.155.58:12627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.churchtop.com"] [uri "/.env"] [unique_id "ab0BxjKvPTVsd7hyrPtDpwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 06:55:39
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 02:55:34.275187 2026] [security2:error] [pid 26911:tid 26911] [client 162.158.155.58:10431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.spores101.com"] [uri "/site/.env"] [unique_id "abzvZvpYNLe0z_N52ION2wAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 06:05:19
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 02:04:58.905649 2026] [security2:error] [pid 25665:tid 25665] [client 162.158.155.58:12941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kingmansvc.com"] [uri "/.env.bak"] [unique_id "abzjilhwzOYUf654jjcWLAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 02:25:59
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 22:25:51.561814 2026] [security2:error] [pid 23037:tid 23049] [client 162.158.155.58:10865] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.psychclinicforchange.com"] [uri "/.env.production.local"] [unique_id "abywL9nFF9Wl_vy7aoFuzgAAAUo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 11:44:27
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 07:44:11.708615 2026] [security2:error] [pid 10417:tid 10417] [client 162.158.155.58:12092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "feministvoice.blog"] [uri "/.env.development"] [unique_id "abvhix1m-ysffN1bYmdM_QAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 11:26:43
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 07:26:34.993087 2026] [security2:error] [pid 16988:tid 16988] [client 162.158.155.58:10186] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.lucid-hq.com"] [uri "/core/.env"] [unique_id "abvdajkwvtX10XswphXLDQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 10:01:54
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 06:01:45.964585 2026] [security2:error] [pid 23251:tid 23351] [client 162.158.155.58:11604] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.indigowampum.com"] [uri "/.env.bak"] [unique_id "abvJiaTGwdYCvtBsyp8hmAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:14:40
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:14:32.185877 2026] [security2:error] [pid 29171:tid 29200] [client 162.158.155.58:12947] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "riverwatchranch.rbarw.com"] [uri "/.env.json"] [unique_id "abu-eAK3Xczctk1_BA1FigAAAQA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 08:15:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 04:15:41.417281 2026] [security2:error] [pid 5513:tid 5513] [client 162.158.155.58:13671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "laurengardner.org"] [uri "/.env_config"] [unique_id "abuwrbuRIy5A7iny5EgKSgAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 07:56:36
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 03:56:29.808527 2026] [security2:error] [pid 10491:tid 10491] [client 162.158.155.58:12398] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.visithastingsvillage.com"] [uri "/srv/.env"] [unique_id "abusLU4j1znwgCQqtN1RHQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 07:36:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.155.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 03:36:40.634572 2026] [security2:error] [pid 10750:tid 10750] [client 162.158.155.58:13443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.elgarage.com.mx"] [uri "/.env.old"] [unique_id "abuniDbZtmpXqILe4I8KDAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack