๐ฒ๐ฝ
octageeks.com
2026-07-03 04:09:36
(5 hours ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-06-25 04:18:00
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-05-14 22:06:11
(1 month ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-13.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-14 10:21:07
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 06:21:02.992380 2026] [security2:error] [pid 13557:tid 13691] [client 162.158.79.30:11870] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jd-mason.com"] [uri "/.env.dusk.local"] [unique_id "agWiDintVYiCuYJ2OqLJZAAAAlM"], referer: https://www.google.com/search?q=jd-mason.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
acadeova
2026-04-12 10:50:11
(2 months ago)
๐จ Recon detected (nft drop)
SRC=162.158.79.30
Observed=TCP dpt=80 in=enp0s6 ttl=57
Time=recent(journ ...
show more
๐จ Recon detected (nft drop)
SRC=162.158.79.30
Observed=TCP dpt=80 in=enp0s6 ttl=57
Time=recent(journalctl: 10 minutes ago)
Assessment=Generic scanning / reconnaissance (PORT_SCAN)
show less
Port Scan
๐บ๐ธ
mawan
2026-04-09 05:54:21
(2 months ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐บ๐ธ
mnsf
2026-04-06 23:05:55
(2 months ago)
Scanning/Probing (22)
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-04-05 02:05:44
(2 months ago)
Scanning/Probing (17)
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-04-03 21:06:01
(2 months ago)
Scanning/Probing (20)
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-03-31 03:06:57
(3 months ago)
Scanning/Probing (14)
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-03-30 02:05:42
(3 months ago)
Scanning/Probing (13)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-27 16:43:53
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 27 12:43:36.274524 2026] [security2:error] [pid 28854:tid 28854] [client 162.158.79.30:11423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.webdryer.com"] [uri "/site/.env"] [unique_id "acazuAjWrTXPsD_cTVntlwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-27 04:31:01
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 27 00:30:54.103112 2026] [security2:error] [pid 6740:tid 6770] [client 162.158.79.30:13163] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.deathbyaudiostore.com"] [uri "/.env.dev.local"] [unique_id "acYH_iRDuK0dEiaWY85QKwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-27 04:13:33
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 27 00:13:28.375401 2026] [security2:error] [pid 31275:tid 31275] [client 162.158.79.30:13592] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "97films.media"] [uri "/.envrc"] [unique_id "acYD6Mr1LUiL48ot2fcJFgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-27 01:06:23
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.79.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 21:06:07.183228 2026] [security2:error] [pid 20954:tid 20954] [client 162.158.79.30:11368] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aimer.es"] [uri "/.env.tmp"] [unique_id "acXX_zOgGg5pQtX1JCGaxQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack