๐บ๐ธ
mawan
2026-07-12 20:25:13
(1 day ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐บ๐ธ
mawan
2026-07-03 19:08:59
(1 week ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ซ๐ฎ
Shaik Sai Meera
2026-05-14 05:10:12
(1 month ago)
IM360 WAF: Hidden file access
Brute-Force
Anonymous
2026-05-08 22:27:40
(2 months ago)
Fail2Ban php-url-fopen
Hacking
Web App Attack
๐บ๐ธ
octageeks.com
2026-03-20 04:09:15
(3 months ago)
Wordpress malicious attack:[octablocked]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 03:56:12
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 23:56:05.785041 2026] [security2:error] [pid 29276:tid 29303] [client 162.158.159.24:11531] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.sandbarsteve.com"] [uri "/public/.env"] [unique_id "abzFVfHi3t1bGc9oxO2vdwAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 02:08:51
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 22:08:41.096135 2026] [security2:error] [pid 7510:tid 7510] [client 162.158.159.24:10519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.title39.com"] [uri "/.env.test"] [unique_id "abysKeDUEmGvpMSgOxtUmQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 00:54:46
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 20:54:41.411167 2026] [security2:error] [pid 5312:tid 5312] [client 162.158.159.24:11888] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "casinoaffiliateprogramsonline.com.crazycoin.net"] [uri "/.env.old"] [unique_id "abya0VvJeO_Wl-hEz6p1TAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 11:47:09
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 07:47:02.308913 2026] [security2:error] [pid 23492:tid 23492] [client 162.158.159.24:11156] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.plazahacienda.com"] [uri "/var/www/.env"] [unique_id "abviNicKqnJrbbQ_ALdV9QAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 11:16:47
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 07:16:38.815002 2026] [security2:error] [pid 24826:tid 24826] [client 162.158.159.24:12066] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "charmainecruz.com"] [uri "/.env.bak"] [unique_id "abvbFqL-iS31s6LY866qhgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 10:00:30
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 06:00:12.923880 2026] [security2:error] [pid 26648:tid 26648] [client 162.158.159.24:13144] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.avmarep.com"] [uri "/root/.env"] [unique_id "abvJLDwXY2YnAWDCwkVCmAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:42:42
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:42:37.174059 2026] [security2:error] [pid 2963:tid 2963] [client 162.158.159.24:12737] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.lubbockknights.com"] [uri "/.env.example"] [unique_id "abvFDTDIBU8FXHcJ3_sygQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 07:58:29
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 03:58:24.143738 2026] [security2:error] [pid 4975:tid 4975] [client 162.158.159.24:9634] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kinderland-preschool.com"] [uri "/.env.container"] [unique_id "abusoM08AC4hYM8YiXI_ngAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 04:11:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 00:11:39.564917 2026] [security2:error] [pid 19903:tid 19903] [client 162.158.159.24:12400] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carlfink.name"] [uri "/admin/.env"] [unique_id "abt3e3WL2ONYF7aZ8YepxAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 03:56:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 18 23:56:45.408766 2026] [security2:error] [pid 20487:tid 20487] [client 162.158.159.24:12318] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.n-vil.com"] [uri "/srv/.env"] [unique_id "abtz_boa3aXygjl9CODpZAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack