๐ฎ๐ฉ
gonet.home
2026-06-29 00:00:13
(6 days ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-27 00:00:37
(1 week ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-25 00:00:52
(1 week ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-23 02:45:04
(1 week ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-22 02:40:04
(1 week ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐บ๐ธ
mnsf
2026-04-03 09:06:47
(3 months ago)
Scanning/Probing (14)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 05:16:20
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 01:16:14.611039 2026] [security2:error] [pid 6790:tid 6790] [client 162.158.159.90:10193] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.robhoward.me"] [uri "/var/www/.env"] [unique_id "ab4pnviDsgTxvLCd8Es8qgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 08:58:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 04:58:26.945137 2026] [security2:error] [pid 15841:tid 15841] [client 162.158.159.90:13083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.sitexpress.es"] [uri "/.env.production.local"] [unique_id "ab0MMiMvUkokC9YXRTR-TgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 04:02:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 00:02:42.612331 2026] [security2:error] [pid 20555:tid 20555] [client 162.158.159.90:12769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.esprit-caraibe.com"] [uri "/site/.env"] [unique_id "abzG4uCAmhUVOxgA9TnT3wAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 01:51:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 21:51:26.614407 2026] [security2:error] [pid 2771:tid 2771] [client 162.158.159.90:10136] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.drwolberg.com"] [uri "/.env.dist"] [unique_id "abyoHgjnsDaFIhCriXW6PwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:54:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:54:30.501807 2026] [security2:error] [pid 5224:tid 5224] [client 162.158.159.90:13010] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.livinghomegrown.com"] [uri "/.env.dev.local"] [unique_id "abvH1rZokNDt3PVgIU3CgwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:10:35
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:10:30.914985 2026] [security2:error] [pid 28047:tid 28047] [client 162.158.159.90:11315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.copanmaya.org"] [uri "/.env.tmp"] [unique_id "abu9hp-sosvryLUG7rsrbwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 08:50:22
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 04:50:17.026517 2026] [security2:error] [pid 7305:tid 7305] [client 162.158.159.90:10204] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.aprilparks.com"] [uri "/.env_config"] [unique_id "abu4ydsC4dSaoQDR4G-z0QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 08:27:42
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 04:27:35.683605 2026] [security2:error] [pid 20593:tid 20593] [client 162.158.159.90:14107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.crewspacer.com.coalminer.com"] [uri "/.env.staging"] [unique_id "abuzd_YghK5WO29RlJwPmgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 07:51:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.159.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 03:51:13.575684 2026] [security2:error] [pid 8797:tid 8908] [client 162.158.159.90:10925] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.kd9uri.com"] [uri "/.env~"] [unique_id "abuq8Qr2c6M_BsIUbwGpygAAAIo"]
show less
Brute-Force
Bad Web Bot
Web App Attack