๐บ๐ธ
TPI-Abuse
2026-07-13 05:19:28
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 01:19:23.430064 2026] [security2:error] [pid 21479:tid 21479] [client 8.219.172.147:34992] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.celiaisrock.com"] [uri "/.git/config"] [unique_id "alR1WwcNViejsHwkLqGxVwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 04:40:43
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 00:40:39.084408 2026] [security2:error] [pid 2783105:tid 2783105] [client 8.219.172.147:57372] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "redbends.com"] [uri "/.env"] [unique_id "alRsR0wqBHGz3Ham_f4vygAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 03:34:05
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:33:59.198771 2026] [security2:error] [pid 28578:tid 28578] [client 8.219.172.147:48238] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "healthpointphysicians.co"] [uri "/.git/config"] [unique_id "alRcp5Dymw1-DD4ExLiePQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 03:12:05
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:12:01.589566 2026] [security2:error] [pid 30073:tid 30073] [client 8.219.172.147:40622] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elessenux.com"] [uri "/.env"] [unique_id "alRXgZWxgM2PHpJle1jCCQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-13 02:57:30
(7 hours ago)
Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
๐ฟ๐ฆ
conure
2026-07-13 02:57:20
(7 hours ago)
csagent: score 20.0: secrets grab x2; 1 domain(s) in 0s
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 02:23:43
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 22:21:29.110756 2026] [security2:error] [pid 13011:tid 13011] [client 8.219.172.147:43408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "accordionfactory.com"] [uri "/.env"] [unique_id "alRLqYzucEVghWuzESRJQAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 01:39:54
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 21:39:50.048437 2026] [security2:error] [pid 6901:tid 6901] [client 8.219.172.147:56148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "saadeh.ws"] [uri "/.git/config"] [unique_id "alRB5l3ZgTWRgU2o_7ZJYAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 01:11:43
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.172.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 21:11:36.770031 2026] [security2:error] [pid 13074:tid 13074] [client 8.219.172.147:60234] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magacine.tv"] [uri "/.env"] [unique_id "alQ7SKql40z4obz9hRq_NAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 00:40:01
(10 hours ago)
suspicious request in access.log
Web App Attack
๐ฆ๐บ
afleventoffice.com.au
2026-07-12 16:59:25
(17 hours ago)
GET /.env HTTP/1.1
Web App Attack