TPI-Abuse
2024-12-04 07:48:17
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 04 02:47:43.319157 2024] [security2:error] [pid 1993698:tid 1993698] [client 85.203.47.196:44107] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.145"] [uri "/apps/.env"] [unique_id "Z1AJH-_D8Pa8MoQNa00XZgAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
webbfabriken
2024-12-04 01:55:04
(2 days ago)
spam or other hacking activities reported by webbfabriken security servers
Attack reported by ... show more spam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbfabriken Security API - WFSecAPI show less
Web Spam
w-e-c-l-o-u-d-i-t
2024-12-03 22:15:48
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (HK/Hong Kong/-): 1 in the last 3 ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (HK/Hong Kong/-): 1 in the last 300 secs; Ports: *; Direction: 0; Trigger: LF_MODSEC show less
Brute-Force
SSH
TPI-Abuse
2024-12-03 11:52:20
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 03 06:52:06.679610 2024] [security2:error] [pid 12218:tid 12218] [client 85.203.47.196:54407] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.238"] [uri "/wp-content/.env"] [unique_id "Z07w5nJjIVrXlOpztKr6hQAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
XICTRON
2024-12-02 16:00:05
(3 days ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
TPI-Abuse
2024-12-02 12:55:42
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 07:55:30.981518 2024] [security2:error] [pid 2005234:tid 2005234] [client 85.203.47.196:38047] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.109"] [uri "/local/.env"] [unique_id "Z02uQmiwQhhkUZFRTBOh5AAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-02 09:01:25
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 04:01:07.465148 2024] [security2:error] [pid 2632724:tid 2632724] [client 85.203.47.196:42653] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.77"] [uri "/library/.env"] [unique_id "Z013U4dxPjyMh4GoeW3o3AAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-02 08:37:58
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 03:37:29.505225 2024] [security2:error] [pid 15295:tid 15295] [client 85.203.47.196:37281] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.15"] [uri "/wp-admin/.env"] [unique_id "Z01xyf_y1z7xLtpCDFZTLgAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-02 06:00:23
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 02 00:59:49.293863 2024] [security2:error] [pid 26545:tid 26545] [client 85.203.47.196:52929] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.148"] [uri "/www/.env"] [unique_id "Z01M1Xv53EBXkDM-Qhrf9wAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-01 20:30:51
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 15:30:35.824222 2024] [security2:error] [pid 27402:tid 27402] [client 85.203.47.196:42233] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.175"] [uri "/.env"] [unique_id "Z0zHa-wmKJqXwDbU-JUJMgAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-01 17:34:37
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 12:34:20.551883 2024] [security2:error] [pid 3560193:tid 3560193] [client 85.203.47.196:44323] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.92"] [uri "/wp-admin/.env"] [unique_id "Z0yeHLA0OPB8adj79mHknwAAAA8"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-01 15:18:23
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 10:18:04.642332 2024] [security2:error] [pid 20717:tid 20717] [client 85.203.47.196:64295] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.70"] [uri "/vendor/.env"] [unique_id "Z0x-LC13Q_kQJG9JugKU3QAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-01 12:56:31
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 07:56:17.501723 2024] [security2:error] [pid 10337:tid 10337] [client 85.203.47.196:2301] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.91"] [uri "/laravel/.env"] [unique_id "Z0xc8VqLhoOaz0en-oKiIgAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-01 08:45:27
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 03:45:11.577631 2024] [security2:error] [pid 8270:tid 8270] [client 85.203.47.196:19795] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.37"] [uri "/wp-content/.env"] [unique_id "Z0wiF_RPyKQklLeFEaBzAwAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-01 03:32:05
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 85.203.47.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 30 22:31:52.002552 2024] [security2:error] [pid 5108:tid 5108] [client 85.203.47.196:51683] [client 85.203.47.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.164"] [uri "/wp-admin/.env"] [unique_id "Z0vYqAwk6B5-ic023GQG-QAAACI"] show less
Brute-Force
Bad Web Bot
Web App Attack