advena
2024-12-11 06:15:55
(1 month ago)
2600:1f18:2138:2b00:680f:b52:60cf:59c8 (AS14618 AMAZON-AES) was intercepted at 2024-12-11T06:02:37Z ... show more 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (AS14618 AMAZON-AES) was intercepted at 2024-12-11T06:02:37Z after violating WAF directive: 874a3e315c344b1281ad4f00046aab6f. Pre-cautionary/corrective action applied: block. show less
Web Spam
Hacking
Brute-Force
Web App Attack
TPI-Abuse
2024-12-10 07:04:36
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 10 02:04:32.353938 2024] [security2:error] [pid 2053942:tid 2053942] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:56731] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.krmartindale.com"] [uri "/.env"] [unique_id "Z1foAHHrDDPjWkWomNulSwAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-10 04:04:39
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 23:04:34.330598 2024] [security2:error] [pid 25604:tid 25604] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:57925] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.artbytracyjane.com"] [uri "/.env"] [unique_id "Z1e90h0AD0du93AJQuwVQwAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-10 02:38:08
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 21:38:03.266445 2024] [security2:error] [pid 945:tid 962] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:54194] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "travelusa.us"] [uri "/.env"] [unique_id "Z1epi0hu7aD3keTYmcOMvQAAAQ4"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-10 02:05:16
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 21:05:12.765519 2024] [security2:error] [pid 9772:tid 9772] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:60337] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "joshuashands.org"] [uri "/.env"] [unique_id "Z1eh2CAH3F3zVkoO9G3pOAAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
Ba-Yu
2024-12-10 01:03:54
(1 month ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
TPI-Abuse
2024-12-10 00:38:44
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 19:38:38.206381 2024] [security2:error] [pid 12063:tid 12063] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:58659] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.burke698.org"] [uri "/.env"] [unique_id "Z1eNjtIk8OBS_9UBmKhXhgAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-10 00:06:14
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 19:06:11.215448 2024] [security2:error] [pid 13108:tid 13108] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:62700] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.landjudging.com"] [uri "/.env"] [unique_id "Z1eF8zZFul_oOoQ-omyMmQAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-09 22:52:03
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 17:51:55.746800 2024] [security2:error] [pid 7322:tid 7322] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:52108] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deindo.com"] [uri "/.env"] [unique_id "Z1d0i9wRaRNuf1vNFxPmPAAAAAo"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-09 20:47:08
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 15:47:03.022535 2024] [security2:error] [pid 1000486:tid 1000486] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:53727] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.blountmuseum.org"] [uri "/.env"] [unique_id "Z1dXRzGYJLXz0UEfz8Y69wAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-09 19:26:35
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 14:26:30.822629 2024] [security2:error] [pid 11758:tid 11769] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:49230] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.buick-reatta.com"] [uri "/.env"] [unique_id "Z1dEZgiHe8LarD2sQomTTwAAAEg"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-09 18:48:31
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 13:48:23.178636 2024] [security2:error] [pid 2090105:tid 2090105] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:63763] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.spectorworld.com"] [uri "/.env"] [unique_id "Z1c7d0t_nqS4i3bI-X9MpAAAABE"] show less
Brute-Force
Bad Web Bot
Web App Attack
weblite
2024-12-09 17:37:32
(1 month ago)
WP_EXPLOIT_PROBE WP_MALWARE_PROBE
Hacking
Web App Attack
TPI-Abuse
2024-12-09 17:08:50
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 12:08:43.368367 2024] [security2:error] [pid 22731:tid 22731] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:55032] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rootsofwellnessayurveda.com"] [uri "/.env"] [unique_id "Z1ckG0YTL6BcppDimti4PQAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-09 16:50:28
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown ... show more (mod_security) mod_security (id:210492) triggered by 2600:1f18:2138:2b00:680f:b52:60cf:59c8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 09 11:50:25.319778 2024] [security2:error] [pid 14632:tid 14632] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8:59814] [client 2600:1f18:2138:2b00:680f:b52:60cf:59c8] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "riedmannfamily.com"] [uri "/.env"] [unique_id "Z1cf0VDh3LB4u3DlsiD5uAAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack