๐บ๐ธ
TPI-Abuse
2026-07-17 00:03:37
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:03:30.206611 2026] [security2:error] [pid 26367:tid 26367] [client 43.161.196.179:51640] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naghmehfarahmand.com"] [uri "/.env.dev"] [unique_id "allxUsklKwYu9PzLsi5ipQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 23:23:21
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 19:23:13.734382 2026] [security2:error] [pid 9642:tid 9642] [client 43.161.196.179:40494] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "clockandnightlight.com"] [uri "/frontend/.env"] [unique_id "alln4Z4oSptG4bf-Rq9aSAAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-16 22:18:55
(2 hours ago)
Excessive 404/403 errors
Brute-Force
๐ฒ๐พ
Rizzy
2026-07-16 21:57:38
(3 hours ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 20:55:44
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 16:55:37.402050 2026] [security2:error] [pid 7615:tid 7693] [client 43.161.196.179:49542] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.agrigrailtech.com"] [uri "/.env.production.local"] [unique_id "allFSd15dZJOWSNZDvmxXwAAAhA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 19:57:42
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 15:57:36.639244 2026] [security2:error] [pid 4543:tid 4543] [client 43.161.196.179:38586] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "microbikinitop.com"] [uri "/private/.env"] [unique_id "alk3sFlNzsM1Hgzrtk5sDgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 19:27:27
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 15:27:20.837548 2026] [security2:error] [pid 18413:tid 18413] [client 43.161.196.179:54996] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.feaverslane.com"] [uri "/.env.old"] [unique_id "alkwmPNpOqb56448yraYZgAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
tsZero
2026-07-16 19:18:13
(5 hours ago)
Scan example: path=/old/.env status=403
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-16 18:57:01
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 14:56:46.239667 2026] [security2:error] [pid 19889:tid 19889] [client 43.161.196.179:38572] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mylitta.com"] [uri "/.env.swp"] [unique_id "alkpbgPp7nAnGY8ZGKZUxgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 18:13:22
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 14:13:08.864094 2026] [security2:error] [pid 30114:tid 30114] [client 43.161.196.179:58668] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crazypencil.com"] [uri "/wp-config.php~"] [unique_id "alkfNHAnrE6WGwM2yat-DwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-16 18:08:09
(6 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 17:48:00
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 13:47:56.011065 2026] [security2:error] [pid 25603:tid 25603] [client 43.161.196.179:55266] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drhoss.com"] [uri "/.env.staging"] [unique_id "alkZTEag4zLM5nB8vEbP4QAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 17:32:17
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 13:32:13.589490 2026] [security2:error] [pid 7763:tid 7763] [client 43.161.196.179:43454] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oglesbyproductions.com"] [uri "/.env.staging"] [unique_id "alkVnWreQielwqbynBhhIwAAAC4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
doarg
2026-07-16 17:20:50
(7 hours ago)
[Thu Jul 16 19:20:47.966435 2026] [authz_core:error] [pid 119065] [client 43.161.196.179:48062] AH01 ...
show more
[Thu Jul 16 19:20:47.966435 2026] [authz_core:error] [pid 119065] [client 43.161.196.179:48062] AH01630: client denied by server configuration: /var/www/doarg.com/config.json
[Thu Jul 16 19:20:48.802217 2026] [authz_core:error] [pid 119065] [client 43.161.196.179:48062] AH01630: client denied by server configuration: /var/www/doarg.com/settings.json
[Thu Jul 16 19:20:49.220219 2026] [authz_core:error] [pid 119065] [client 43.161.196.179:48062] AH01630: client denied by server configuration: /var/www/doarg.com/secrets.json
[Thu Jul 16 19:20:49.637889 2026] [authz_core:error] [pid 119065] [client 43.161.196.179:48062] AH01630: client denied by server configuration: /var/www/doarg.com/credentials.json
[Thu Jul 16 19:20:50.056636 2026] [authz_core:error] [pid 119065] [client 43.161.196.179:48062] AH01630: client denied by server configuration: /var/www/doarg.com/cdp_api_key.json
...
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-16 17:02:28
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 43.161.196.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 13:02:23.432481 2026] [security2:error] [pid 26185:tid 26185] [client 43.161.196.179:51456] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kircali.net"] [uri "/api/.env"] [unique_id "alkOn9XNz-KKP22J-SU3IgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack