๐ง๐ช
cmbplf
2026-06-27 23:36:21
(3 days ago)
6.788 requests with url.path //xmlrpc.php
Brute-Force
Bad Web Bot
๐ง๐ช
cmbplf
2026-05-29 01:31:21
(1 month ago)
2.368 POST requests with url.path */wp-login.php
Brute-Force
Bad Web Bot
๐ซ๐ฎ
inlink.ltd
2026-05-27 19:07:02
(1 month ago)
Known malicious PHP file or CMS probe
Web App Attack
๐ฌ๐ง
consul.to
2026-02-15 12:49:05
(4 months ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 12:27:21
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:27:04.411666 2026] [security2:error] [pid 16827:tid 16827] [client 45.3.43.100:30465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "title41.com"] [uri "/api/.env"] [unique_id "aZG7mAgsTz_-lV9LjdmhLAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐พ
lns.bz
2026-02-15 12:21:15
(4 months ago)
.env scanning [BY]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 06:35:35
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:35:30.478539 2026] [security2:error] [pid 16720:tid 16720] [client 45.3.43.100:34969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tactara.net"] [uri "/site/.git/config"] [unique_id "aZFpMiRL1nDWnZCPUyNv9gAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 04:23:43
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:23:37.770892 2026] [security2:error] [pid 22199:tid 22225] [client 45.3.43.100:41347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stridemechanics.com"] [uri "/.env.staging"] [unique_id "aZFKSb6k6LPKjSLyJxBiCgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
myagent.site
2026-02-15 03:43:22
(4 months ago)
Blocking for trying to access an exploit file: /.env.save
Hacking
๐บ๐ธ
TPI-Abuse
2026-02-15 03:14:29
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:14:21.630845 2026] [security2:error] [pid 28940:tid 28940] [client 45.3.43.100:23235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stansco.com"] [uri "/api/.env"] [unique_id "aZE6Dac0xCB090OjEgxtZAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐ด
INTEQ
2026-02-15 02:32:30
(4 months ago)
Web attack from 45.3.43.100
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 01:26:46
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:26:39.697650 2026] [security2:error] [pid 16900:tid 16900] [client 45.3.43.100:30999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "m2pg.net"] [uri "/.env.save"] [unique_id "aZEgz1AQi_iex3W6NyakbAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 01:06:09
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:06:02.118639 2026] [security2:error] [pid 2170:tid 2255] [client 45.3.43.100:16513] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mtiminis.com"] [uri "/admin/.git/config"] [unique_id "aZEb-mK04aBCi-tiI-BA3AAAAM0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
oh.mg
2026-02-15 00:52:49
(4 months ago)
[Sun Feb 15 01:52:48.568709 2026] [security2:error] [pid 601510:tid 601530] [client 45.3.43.100:2520 ...
show more
[Sun Feb 15 01:52:48.568709 2026] [security2:error] [pid 601510:tid 601530] [client 45.3.43.100:25209] [client 45.3.43.100] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "mrman.info"] [uri "/admin/.git/config"] [unique_id "aZEY4IpFoyNi8-JdO-0V-gAAAE8"]
[Sun Feb 15 01:52:48.609770 2026] [security2:error] [pid 601510:tid 601524] [client 45.3.43.100:25209] [client 45.3.43.100] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "an
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 00:17:18
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.43.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:17:12.200096 2026] [security2:error] [pid 637915:tid 637915] [client 45.3.43.100:63769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "loudenlow.com"] [uri "/backend/.env"] [unique_id "aZEQiGw9w8-y_Giwx8s6NgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack