๐บ๐ธ
octageeks.com
2026-04-06 04:07:06
(3 months ago)
Wordpress malicious attack:[octablocked]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-22 10:29:07
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 22 06:29:01.776819 2026] [security2:error] [pid 10017:tid 10017] [client 162.158.158.227:12226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.brazilianbikinis.com"] [uri "/.env.bak"] [unique_id "ab_Ebeu-CIkFUsw4S_DuRQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
LotPhantom
2026-03-20 16:44:16
(3 months ago)
2026/03/20 16:44:15 [error] 2491775#2491775: *167756 access forbidden by rule, client: 162.158.158.2 ...
show more
2026/03/20 16:44:15 [error] 2491775#2491775: *167756 access forbidden by rule, client: 162.158.158.227, server: wynnesmiles.bridginggaps.tech, request: "GET /public/.env HTTP/2.0", host: "wynnesmiles.bridginggaps.tech"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 08:14:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 04:14:42.769600 2026] [security2:error] [pid 8541:tid 8541] [client 162.158.158.227:13346] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.vittariadesign.com"] [uri "/.env.orig"] [unique_id "ab0B8rsVEb9tpgamw4NUhAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 05:50:22
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 01:50:16.438937 2026] [security2:error] [pid 2480097:tid 2480097] [client 162.158.158.227:12481] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.register-yacht-spain.com"] [uri "/.env.development.local"] [unique_id "abzgGGwkj6c_2SCg7s8ymwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 04:26:37
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 00:26:30.196256 2026] [security2:error] [pid 28423:tid 28423] [client 162.158.158.227:12966] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.intellian.us"] [uri "/.env_settings"] [unique_id "abzMdjhCjyGTETYte4gx_gAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 01:18:19
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 21:18:15.379821 2026] [security2:error] [pid 25951:tid 25951] [client 162.158.158.227:12395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fundingangelinvestors.com"] [uri "/.env.backup"] [unique_id "abygV_2Ncd57GFrZgURGvQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 11:49:47
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 07:49:40.847603 2026] [security2:error] [pid 19202:tid 19202] [client 162.158.158.227:9925] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.martinvjohnson.com"] [uri "/.env.dev.local"] [unique_id "abvi1JqXCbDqs7u3OJPOKAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 11:16:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 07:16:07.968594 2026] [security2:error] [pid 21362:tid 21362] [client 162.158.158.227:13543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.chrisbilder.com"] [uri "/.env_config"] [unique_id "abva99x7RbZgbacXUDqBCwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 10:55:26
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 06:55:20.746527 2026] [security2:error] [pid 9287:tid 9287] [client 162.158.158.227:12318] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boat-registration-croatia.com.boatregistrationdelaware.com"] [uri "/.env.example"] [unique_id "abvWGC3EEo-ZbQl7ZUKIXAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:57:56
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:57:51.401707 2026] [security2:error] [pid 3366:tid 3366] [client 162.158.158.227:14224] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.dezignz.com"] [uri "/public/.env"] [unique_id "abvIn-GHbLlqM_F-_HC5DAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:01:43
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:01:35.680121 2026] [security2:error] [pid 10924:tid 10924] [client 162.158.158.227:13808] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.gayarab.com"] [uri "/.env.prod"] [unique_id "abu7b_jNsz8vG87AR4AuaQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 08:28:01
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 04:27:57.927465 2026] [security2:error] [pid 15654:tid 15654] [client 162.158.158.227:12206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.growingsolutions.org"] [uri "/config/.env.local"] [unique_id "abuzjQiApZnunQPhaXiZ5QAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 08:10:27
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 04:09:58.669308 2026] [security2:error] [pid 2373:tid 2373] [client 162.158.158.227:10716] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcgmcg.com.coolingsprings.org"] [uri "/.git/refs/heads/main"] [unique_id "abuvVsPEErOZUAka4_aTBAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 07:16:30
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.158.227 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 03:16:14.131281 2026] [security2:error] [pid 30099:tid 30099] [client 162.158.158.227:11004] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.angelabcomics.com"] [uri "/.env.tmp"] [unique_id "abuiviHsTlnZUovjTlAu0AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack