๐บ๐ธ
mnsf
2026-04-08 03:06:14
(3 months ago)
Scanning/Probing (15)
Brute-Force
Web App Attack
๐บ๐ธ
octageeks.com
2026-04-06 04:07:05
(3 months ago)
Wordpress malicious attack:[octablocked]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 01:44:14
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 21:44:11.119243 2026] [security2:error] [pid 24406:tid 24406] [client 162.158.158.226:9243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.tracytappan.net"] [uri "/admin/.env"] [unique_id "ab33619chFyiCjkhHZQFLQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
LotPhantom
2026-03-20 16:43:00
(3 months ago)
2026/03/20 16:42:59 [error] 2491775#2491775: *167710 access forbidden by rule, client: 162.158.158.2 ...
show more
2026/03/20 16:42:59 [error] 2491775#2491775: *167710 access forbidden by rule, client: 162.158.158.226, server: wynnesmiles.bridginggaps.tech, request: "GET /.git/refs/heads/master HTTP/2.0", host: "wynnesmiles.bridginggaps.tech"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 06:10:05
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 02:10:00.136469 2026] [security2:error] [pid 3149:tid 3149] [client 162.158.158.226:14188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.vittariadesign.com"] [uri "/.env_backup"] [unique_id "abzkuIlfH9S2-nborm2vdQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 05:53:20
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 01:53:14.564397 2026] [security2:error] [pid 15975:tid 15975] [client 162.158.158.226:10244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.californiastarsfarm.com.herston.net"] [uri "/public/.env"] [unique_id "abzgys5YwOVA8jUELwt4bgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 04:27:17
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 00:27:10.038449 2026] [security2:error] [pid 12482:tid 12482] [client 162.158.158.226:13426] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.mavrik12.com"] [uri "/.env.tmp"] [unique_id "abzMnj7zIvvX0SiqCFce6gAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 11:17:28
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 07:17:23.911064 2026] [security2:error] [pid 19792:tid 19792] [client 162.158.158.226:9618] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.chrisbilder.com"] [uri "/.env.staging"] [unique_id "abvbQ0LEY3c1Y9VGEFP9hwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 10:03:42
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 06:03:34.499426 2026] [security2:error] [pid 13296:tid 13296] [client 162.158.158.226:12532] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.robertwhitbeck.com"] [uri "/backend/.env"] [unique_id "abvJ9upCeiyFcwMve4TGcwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:44:44
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:44:37.071275 2026] [security2:error] [pid 31585:tid 31585] [client 162.158.158.226:12238] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.mordesign1.com"] [uri "/.env_settings"] [unique_id "abvFhTLC6D6aZ4Hs10ztMAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:27:08
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:27:00.215087 2026] [security2:error] [pid 415:tid 480] [client 162.158.158.226:10256] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "afaorg.aafm.us"] [uri "/.env.json"] [unique_id "abvBZCSRdOkpTDmUxmXjXwAAAcA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 08:27:01
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 04:26:57.051813 2026] [security2:error] [pid 25589:tid 25589] [client 162.158.158.226:13452] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.growingsolutions.org"] [uri "/.env.development.local"] [unique_id "abuzUcKHAcsfCguq1OTMyAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 08:05:59
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 04:05:51.857670 2026] [security2:error] [pid 30381:tid 30381] [client 162.158.158.226:11825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.limegreenvinyl.com"] [uri "/var/www/.env"] [unique_id "abuuX6Pnk8K9BOjCZyKIBAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 07:16:37
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 03:16:15.766650 2026] [security2:error] [pid 30099:tid 30099] [client 162.158.158.226:11725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.angelabcomics.com"] [uri "/.env_settings"] [unique_id "abuivyHsTlnZUovjTlAu2AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 06:42:40
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 02:42:34.763115 2026] [security2:error] [pid 31624:tid 31624] [client 162.158.158.226:10818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.salvoni.org"] [uri "/.env.dist"] [unique_id "abua2mINIRFn9iDLwt8ijgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack