πΊπΈ
TPI-Abuse
2026-06-07 10:40:14
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 06:40:07.915129 2026] [security2:error] [pid 21650:tid 21650] [client 82.198.227.27:31544] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lgbtqhistoryinaustin.org"] [uri "/admin/.env"] [unique_id "aiVKhyWSYJih7rS9-roGXgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
DZBOT
2026-06-07 10:37:31
(1 hour ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
π¨π
4server
2026-06-07 10:04:52
(1 hour ago)
[SunJun0712:04:49.6884722026][security2:error][pid2636664:tid2637251][client82.198.227.27:0]ModSecur ...
show more
[SunJun0712:04:49.6884722026][security2:error][pid2636664:tid2637251][client82.198.227.27:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"piffarerio.ch\"][uri\"/api/.env\"][unique_id\"aiVCQfZUfrApf40CXABCEAAAARU\"]
show less
Hacking
Web App Attack
π¬π§
consul.to
2026-06-07 08:59:41
(2 hours ago)
Web attack/malicious scanning detected
Web App Attack
2026-06-07 06:40:20
(5 hours ago)
IP banned by Fail2Ban in jail nginx-abusive-ips
Web App Attack
Brute-Force
Bad Web Bot
ππΊ
Adorjan Daczo
2026-06-07 05:40:31
(6 hours ago)
Probe for vulnerabilities. Path attempted: /api/.env
Web App Attack
π²π½
octageeks.com
2026-06-07 04:10:00
(7 hours ago)
Wordpress malicious attack:[octablocked]
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 00:54:22
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 20:54:17.302083 2026] [security2:error] [pid 7017:tid 7017] [client 82.198.227.27:32274] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icaruscreativearts.com"] [uri "/laravel/.env"] [unique_id "aiTBOVd_NoBryGKdXgq2fQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-06-06 23:24:30
(12 hours ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
πΊπΈ
TPI-Abuse
2026-06-06 22:11:59
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 18:11:54.101954 2026] [security2:error] [pid 16657:tid 16657] [client 82.198.227.27:23252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fiveoceansconsulting.com"] [uri "/app/.env"] [unique_id "aiSbKqzc7vIKORyb9EtaAgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Little Iguana
2026-06-06 22:07:14
(13 hours ago)
Attempt to hack Wordpress Login, XMLRPC or other login
Hacking
πΊπΈ
TPI-Abuse
2026-06-06 21:27:38
(14 hours ago)
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 17:27:35.944871 2026] [security2:error] [pid 9884:tid 9884] [client 82.198.227.27:21856] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "valerieohayon.com"] [uri "/backend/.env"] [unique_id "aiSQx4Ux8tUeYEgfjdfV8gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-06-06 21:15:01
(14 hours ago)
suspicious request in access.log
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-06 20:09:24
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.198.227.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 16:09:20.443154 2026] [security2:error] [pid 26919:tid 26919] [client 82.198.227.27:54098] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "smokeyspb.photos"] [uri "/laravel/.env"] [unique_id "aiR-cKt1gBHVkYJlxpwlfQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
raph
2026-06-06 20:01:37
(15 hours ago)
[LIB DIR] crawler /vendor/*, /node_modules/*, /laravel/*, etc.
Bad Web Bot
Web App Attack