HEX
Server: Apache
System: Linux msm5694.mjhst.com 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User: camjab_ssh (1000)
PHP: 5.3.29
Disabled: NONE
$ pwd: /var/lib/modsecurity/audit/20260104/20260104-1435/
Upload Files
File: //var/lib/modsecurity/audit/20260104/20260104-1435/20260104-143502-aVrA5rhenDUAAH82cqgAAABB
--31220365-A--
[04/Jan/2026:14:35:02 --0500] aVrA5rhenDUAAH82cqgAAABB 20.42.220.101 34902 127.0.1.41 80
--31220365-B--
GET /wp-admin/alfa.php HTTP/1.1
X-Real-IP: 20.42.220.101
Host: veryplain.com
Connection: close
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36
Referer: https://www.yahoo.com/
Accept: text/html, application/xhtml+xml, application/xml; q=0.9, image/webp, */*; q=0.8
Accept-Language: en-US, en; q=0.5
Upgrade-Insecure-Requests: 1
DNT: 1
X-Forwarded-For: 164.74.240.146

--31220365-F--
HTTP/1.1 401 Authorization Required
WWW-Authenticate: Basic realm="Restricted"
Content-Length: 464
Connection: close
Content-Type: text/html; charset=iso-8859-1

--31220365-E--

--31220365-H--
Stopwatch: 1767555302896405 559 (- - -)
Stopwatch2: 1767555302896405 559; combined=41, p1=38, p2=0, p3=3, p4=0, p5=0, sr=25, sw=0, l=0, gc=0
Response-Body-Transformed: Dechunked
Producer: ModSecurity for Apache/2.9.1 (http://www.modsecurity.org/); 200911012341.
Server: Apache/2.2.31 (Unix) mod_ssl/2.2.31 OpenSSL/1.0.2k-fips PHP/5.3.29 mod_fastcgi/2.4.6
Engine-Mode: "ENABLED"

--31220365-Z--
@ Telegram