๐ฉ๐ช
Blexyel
2026-07-18 16:58:28
(15 hours ago)
172.68.244.192 - - [18/Jul/2026:18:58:27 +0200] "GET /wp-login.php HTTP/1.1" 301 162 "-" "-"
...
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-15 09:17:56
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 05:17:41.833777 2026] [security2:error] [pid 7501:tid 7501] [client 172.68.244.192:11649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/config/parameters.yml" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shelbynash.com"] [uri "/app/config/parameters.yml"] [unique_id "agbkteIyDd5heZ9ZMrJjrQAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-05-14 22:06:18
(2 months ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-13.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-09 21:06:13
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 17:06:07.696671 2026] [security2:error] [pid 17522:tid 17522] [client 172.68.244.192:10773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "techspertnet.com"] [uri "/.git/config"] [unique_id "af-hvykNaaHwD-dUVYqWPAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 10:48:59
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 06:48:54.129687 2026] [security2:error] [pid 899354:tid 899354] [client 172.68.244.192:14182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.braunhausmedia.com"] [uri "/.env.local"] [unique_id "adThFoHxFEeFS1JuJr64QwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 08:59:59
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 04:59:54.354541 2026] [security2:error] [pid 999584:tid 999584] [client 172.68.244.192:12529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.nue18.com"] [uri "/.env.development"] [unique_id "adTHiv0HjYa-wpOgIz_zzgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 07:01:25
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 03:01:16.809523 2026] [security2:error] [pid 1025467:tid 1025467] [client 172.68.244.192:9232] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.digdesign.com"] [uri "/.env"] [unique_id "adSrvN1Ynj4yLLoCs6XijwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 02:43:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 22:43:21.829783 2026] [security2:error] [pid 10988:tid 10988] [client 172.68.244.192:12520] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dogdom.gulftelecom.com"] [uri "/.env.old"] [unique_id "adMdyfYhJQkhkJICCIQL8AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-04-06 01:06:05
(3 months ago)
Too many Status 40X (11)
Scanning/Probing (20)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 14:52:47
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 10:52:38.950554 2026] [security2:error] [pid 26777:tid 26777] [client 172.68.244.192:14041] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kcmastercleaners.com.topgunsecurityservice.com"] [uri "/app/.env"] [unique_id "adJ3Nt-5LFr1yoHz6EpEkQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-05 11:59:11
(3 months ago)
[Sun Apr 05 13:59:10.398407 2026] [authz_core:error] [pid 24332] [client 172.68.244.192:9587] AH0163 ...
show more
[Sun Apr 05 13:59:10.398407 2026] [authz_core:error] [pid 24332] [client 172.68.244.192:9587] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Apr 05 13:59:10.555205 2026] [authz_core:error] [pid 24332] [client 172.68.244.192:9587] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Apr 05 13:59:10.729740 2026] [authz_core:error] [pid 24332] [client 172.68.244.192:9587] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 12:06:56
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 08:06:46.976610 2026] [security2:error] [pid 22925:tid 23040] [client 172.68.244.192:11983] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.maritimeclinic.net"] [uri "/app/.env"] [unique_id "adD-1vaBUzI0kKhpoYwTOwAAAIU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 09:47:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 05:47:10.729721 2026] [security2:error] [pid 1235:tid 1345] [client 172.68.244.192:13514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madring.live.venezuelaguia.com"] [uri "/var/www/.env"] [unique_id "adDeHv3-ApRvBnlahBwTAQAAARQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 07:16:58
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 03:16:52.142575 2026] [security2:error] [pid 23421:tid 23421] [client 172.68.244.192:12840] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.elcocotours.com"] [uri "/.env.backup"] [unique_id "adC65MPuu9JyEQ4WCYsEVgAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 04:11:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.244.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 00:11:29.131146 2026] [security2:error] [pid 31118:tid 31118] [client 172.68.244.192:14263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.countertop.mooseled.com"] [uri "/.env.backup"] [unique_id "adCPcThTUnbbiHUvNlIqwAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack