|
๐บ๐ธ
octageeks.com
|
|
Wordpress malicious attack:[octahoneypot]
|
Web App Attack
|
|
|
Anonymous
|
|
DirectAdmin Auto Report (modsec_audit.log)
|
Brute-Force
SSH
|
|
|
๐ท๐ด
mbtweb
|
|
|
Hacking
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 192.142.0.3 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 192.142.0.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 02:21:46.145620 2025] [security2:error] [pid 31543:tid 31543] [client 192.142.0.3:42582] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.142"] [uri "/.env"] [unique_id "aRl7iplIW-TCwOBU-1z_nQAAAA4"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 192.142.0.3 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 192.142.0.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 01:06:31.124075 2025] [security2:error] [pid 12566:tid 12566] [client 192.142.0.3:60886] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.99"] [uri "/.env"] [unique_id "aRlp53ToGoS5nmvi6R7wRgAAAAI"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
kosada.com
|
|
Web vulnerability probing: /config.json
|
Web App Attack
|
|
|
Anonymous
|
|
(mod_security) mod_security triggered on hostname [redacted])
|
SQL Injection
|
|
|
๐ฆ๐บ
screwlooseit.com.au
|
|
Blocked by CSF 13 firewall - Rule: config-dotfile
ZA/South Africa/-
|
Web App Attack
|
|
|
๐ง๐ช
cmbplf
|
|
120 requests with url.path *.env
|
Brute-Force
Bad Web Bot
|
|
|
๐ฉ๐ช
Hazzard
|
|
(mod_security) mod_security triggered on hostname [redacted])
|
SQL Injection
|
|
|
๐ต๐ฑ
mscode.pl
|
|
Triggered Cloudflare WAF (firewallManaged) from NL.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET meth ...
show more
Triggered Cloudflare WAF (firewallManaged) from NL.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /wp-config.php
UA: Mozilla/5.0 (Windows NT 10.0
show less
|
Bad Web Bot
|
|
|
๐ซ๐ท
dynamix
|
|
Multiple WAF Violations
|
Web App Attack
|
|
|
๐ง๐ช
cmbplf
|
|
322 requests with url.path *.env
|
Brute-Force
Bad Web Bot
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 192.142.0.3 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 192.142.0.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 16:14:19.208623 2025] [security2:error] [pid 14101:tid 14101] [client 192.142.0.3:45974] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "joshseipel.com"] [uri "/.env"] [unique_id "aROnK4CWtph8qRncNwjEkQAAABM"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 192.142.0.3 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 192.142.0.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 15:04:04.693105 2025] [security2:error] [pid 18109:tid 18109] [client 192.142.0.3:57070] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "askthetarot.cards"] [uri "/.env"] [unique_id "aROWtPoqlN_-vkTmMf5BsQAAABA"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|