๐บ๐ธ
TPI-Abuse
2026-05-25 18:15:40
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 14:15:36.971939 2026] [security2:error] [pid 11815:tid 11815] [client 172.68.245.79:9745] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blosoms.org"] [uri "/.env.dev"] [unique_id "ahSRyGiDSO_qeqrsH9OR_gAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-15 08:46:51
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 04:46:23.833294 2026] [security2:error] [pid 14442:tid 14459] [client 172.68.245.79:14308] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gryphix2014.thesdgriffingroup.com"] [uri "/.env"] [unique_id "agbdXzZRkVGYX_uH--qYJgAAAM4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-09 10:53:06
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 06:53:03.247455 2026] [security2:error] [pid 28451:tid 28451] [client 172.68.245.79:10754] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "djdharma.com"] [uri "/.git/config"] [unique_id "af8SDwdmRCxvtr2Xvam4WwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-29 20:11:21
(2 months ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
Anonymous
2026-04-26 19:54:56
(2 months ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐ฉ๐ช
Vegascosmetics
2026-04-19 21:51:47
(2 months ago)
Kingcopy(AI-IDS):IP is Probing for Wordpress vulnerabilities WTF:Banned
Hacking
Bad Web Bot
Web App Attack
Anonymous
2026-04-14 10:35:42
(2 months ago)
Web App Attack
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-04-07 22:06:51
(2 months ago)
Scanning/Probing (16)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-31 00:42:41
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 20:42:36.862900 2026] [security2:error] [pid 22785:tid 22785] [client 172.68.245.79:9475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cipcug.vccemail.net"] [uri "/.env.tmp"] [unique_id "acsYfKxEUfiXD23kdrRcxQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-31 00:16:24
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 20:16:10.865888 2026] [security2:error] [pid 22256:tid 22256] [client 172.68.245.79:10637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.jewishventura.org"] [uri "/.env.development.local"] [unique_id "acsSSuGez4iGn48D4bRJKQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 14:14:16
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 10:14:09.616680 2026] [security2:error] [pid 23785:tid 23785] [client 172.68.245.79:13290] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.thai-tam.com"] [uri "/.env~"] [unique_id "acqFMTUi_ws6384AANrkkQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 12:58:33
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 08:58:27.624614 2026] [security2:error] [pid 11141:tid 11141] [client 172.68.245.79:12026] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "atame.elpais.mx"] [uri "/.git/refs/heads/master"] [unique_id "acpzc_VZlBy6CoTnViXXEQAAACQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 10:16:09
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 06:16:03.091586 2026] [security2:error] [pid 8978:tid 8978] [client 172.68.245.79:9764] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "harintonmechanical.com"] [uri "/.env.bak"] [unique_id "acpNY-Y-l7VcDYQENUsdPgAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 08:25:45
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 04:25:40.856172 2026] [security2:error] [pid 3617:tid 3617] [client 172.68.245.79:12466] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.genesis-castle.com"] [uri "/admin/.env"] [unique_id "acozhJhFUT0ioKR1NBlg-AAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 01:56:30
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.245.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 21:56:23.421900 2026] [security2:error] [pid 2835:tid 2853] [client 172.68.245.79:11343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ultimate-billiards.com"] [uri "/.env.docker"] [unique_id "acnYR0TWKZMpBENURQldaAAAAJA"]
show less
Brute-Force
Bad Web Bot
Web App Attack