πΊπΈ
TPI-Abuse
2026-06-07 10:15:57
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 06:15:51.978631 2026] [security2:error] [pid 4623:tid 4623] [client 178.93.200.215:46923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mwrn.com"] [uri "/.env"] [unique_id "aiVE1zp7AsIqszmJ4qo9hQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 09:48:57
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 05:48:52.874136 2026] [security2:error] [pid 23452:tid 23452] [client 178.93.200.215:45731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bnaiisraelkearny.com"] [uri "/.env"] [unique_id "aiU-hJ-sdl5RhXRk1jGjZQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
4server
2026-06-07 06:32:40
(2 weeks ago)
[SunJun0708:32:37.6373512026][security2:error][pid1862734:tid1863204][client178.93.200.215:0]ModSecu ...
show more
[SunJun0708:32:37.6373512026][security2:error][pid1862734:tid1863204][client178.93.200.215:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.rssolution.ch\"][uri\"/.env\"][unique_id\"aiUQhQ_V3p12aIqcpNB1xwAAAQg\"]
show less
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 06:25:51
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 02:25:44.785824 2026] [security2:error] [pid 8634:tid 8634] [client 178.93.200.215:42523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bryteandbroderick.org"] [uri "/.env"] [unique_id "aiUO6MDcT-t9MiwkErvU0gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 05:52:13
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 01:52:10.192936 2026] [security2:error] [pid 7411:tid 7411] [client 178.93.200.215:52583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.christineohlman.net"] [uri "/.env"] [unique_id "aiUHCqsWuYgK8JzNrYtv5QAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 05:07:19
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 01:07:13.221979 2026] [security2:error] [pid 28710:tid 28710] [client 178.93.200.215:46371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "realjasonchance.com"] [uri "/.env"] [unique_id "aiT8gXM-R5i7ZOVbkiMt7gAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
big-cloud.nl
2026-06-07 04:52:34
(2 weeks ago)
Try to access /.env
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 04:29:07
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 00:29:00.591630 2026] [security2:error] [pid 21635:tid 21643] [client 178.93.200.215:60427] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.uoexpanse.com"] [uri "/.env"] [unique_id "aiTzjL07HDoVQz2s5_1yHwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-06-07 04:07:53
(2 weeks ago)
Configuration snooping (/.env):
178.93.200.215 - - [07/Jun/2026:05:07:53 +0100] "GET /.env HTTP/1.1 ...
show more
Configuration snooping (/.env):
178.93.200.215 - - [07/Jun/2026:05:07:53 +0100] "GET /.env HTTP/1.1" 200 234 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0"
show less
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 04:03:29
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 00:03:21.222806 2026] [security2:error] [pid 5701:tid 5701] [client 178.93.200.215:52217] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.med-engineering.com"] [uri "/.env"] [unique_id "aiTtieTSChSlVtetWkU3_QAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-06-07 03:05:30
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
2026-06-07 00:55:02
(2 weeks ago)
suspicious request in access.log
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-06 23:31:21
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.93.200.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 19:31:15.933123 2026] [security2:error] [pid 31438:tid 31438] [client 178.93.200.215:41343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cbmanufacturing.com"] [uri "/.env"] [unique_id "aiStw0SnN6lmVvLJnJyjDwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
DZBOT
2026-06-06 22:20:38
(2 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack