๐ซ๐ท
dynamix
2026-07-17 10:31:02
(1 hour ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
iNetWorker
2026-07-17 07:31:20
(4 hours ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 06:49:40
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 02:49:31.015139 2026] [security2:error] [pid 323999:tid 323999] [client 182.43.87.19:32845] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nivotrol.innovacionesnimba.com"] [uri "/.env.test"] [unique_id "alnQe_L6IblIpc2LqWH_YwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 03:08:36
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 23:08:18.083968 2026] [security2:error] [pid 152226:tid 152226] [client 182.43.87.19:48485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "easyweb-publishing.com"] [uri "/.env.test"] [unique_id "almcouLE067H3BMojRUUTQAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 01:51:04
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 21:50:51.417249 2026] [security2:error] [pid 24050:tid 24050] [client 182.43.87.19:58310] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "amybeam.com"] [uri "/.env.prod"] [unique_id "almKe9qNZh1kpG-bHV54iwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
myintarweb
2026-07-17 01:04:28
(10 hours ago)
182.43.87.19 - - [17/Jul/2026:02:04:27 +0100] 443 "GET /firebase-adminsdk.json HTTP/1.1" 301 1728 "- ...
show more
182.43.87.19 - - [17/Jul/2026:02:04:27 +0100] 443 "GET /firebase-adminsdk.json HTTP/1.1" 301 1728 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 (Silvy X Ran; +https://silvyxran.love; +https://silver.inc)"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 00:20:00
(11 hours ago)
(mod_security) mod_security (id:210730) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:19:47.528592 2026] [security2:error] [pid 31266:tid 31266] [client 182.43.87.19:48291] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||alrevora.com|F|2"] [data ".key"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "alrevora.com"] [uri "/config/master.key"] [unique_id "all1Iw4zEddBjaz6X4IwKwAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-16 22:10:11
(13 hours ago)
| Suspicious URL access.
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-16 20:42:54
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 16:42:41.177708 2026] [security2:error] [pid 1715:tid 1715] [client 182.43.87.19:59803] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ridgecrestrealtors.com"] [uri "/src/.env"] [unique_id "allCQTFiK2S-LlKD8ODyLgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 20:10:31
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 16:10:19.351848 2026] [security2:error] [pid 838:tid 838] [client 182.43.87.19:51642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.10bestrealtors.directoryofbikes.com"] [uri "/.env"] [unique_id "alk6q1I9I166HnWoDTKMcwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 17:42:54
(18 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 13:42:26.723358 2026] [security2:error] [pid 13235:tid 13327] [client 182.43.87.19:56103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eafm.org.aafm.us"] [uri "/.env.test"] [unique_id "alkYAvTO6a-gTz5dq_uspgAAAZA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 17:00:30
(18 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 13:00:20.017365 2026] [security2:error] [pid 3178521:tid 3178521] [client 182.43.87.19:42719] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hendersonhomes.com"] [uri "/.env"] [unique_id "alkOJPA9NMeWZdai6IKZEgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 16:32:07
(19 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 12:31:54.106657 2026] [security2:error] [pid 30603:tid 30603] [client 182.43.87.19:50435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carbtestingidaho.com"] [uri "/frontend/.env"] [unique_id "alkHehwWjZPyKTjMUImKwgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 15:38:14
(20 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 11:38:08.681014 2026] [security2:error] [pid 21694:tid 21694] [client 182.43.87.19:46649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lukeschicago.com"] [uri "/.env.production"] [unique_id "alj64PF5hwj0mkPhU5T-MgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 15:19:19
(20 hours ago)
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 182.43.87.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 11:15:53.830510 2026] [security2:error] [pid 6570:tid 6570] [client 182.43.87.19:36653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pcsyportatiles.com.integratic.com.co"] [uri "/.env.prod"] [unique_id "alj1qcPYyUZr9a_SYC7yjgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack