Anonymous
2026-07-16 21:53:03
(48 minutes ago)
Bloqueado automaticamente por CrowdSec escenario crowdsecurity/http-sensitive-files
Brute-Force
πΊπΈ
TPI-Abuse
2026-07-16 21:52:55
(49 minutes ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 17:52:48.234874 2026] [security2:error] [pid 534204:tid 534204] [client 125.91.110.128:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.dentguyvt.com"] [uri "/.env.test"] [unique_id "allSsBi7jZIFbMCyWOD4ZgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 21:16:38
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 17:16:31.014119 2026] [security2:error] [pid 12160:tid 12160] [client 125.91.110.128:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.ralphrichardson.com"] [uri "/.env"] [unique_id "allKL8HyjGJLSuJVPWp0jwAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 20:52:09
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 16:52:04.029411 2026] [security2:error] [pid 8976:tid 8976] [client 125.91.110.128:46319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.resume.martinka.org"] [uri "/app/.env"] [unique_id "allEdLiHh122gOvAqCOPeAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
todix
2026-07-16 20:06:10
(2 hours ago)
Web App Attack Exploid from 125.91.110.128
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 19:55:57
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 15:55:52.156227 2026] [security2:error] [pid 29053:tid 29053] [client 125.91.110.128:49261] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "luxurymicrobikinis.com"] [uri "/.env.template"] [unique_id "alk3SL1N3c5KZU5kFdeoaAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 19:27:08
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 15:27:01.190582 2026] [security2:error] [pid 22489:tid 22489] [client 125.91.110.128:35355] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.feaverslane.com"] [uri "/.env.dev"] [unique_id "alkwheHEv7psZ7jttDB-kgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 19:09:43
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 15:09:35.879378 2026] [security2:error] [pid 26118:tid 26121] [client 125.91.110.128:54335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "accsesame.com"] [uri "/.env.save"] [unique_id "alksb98GdxAAic2J7cnC1wAAAME"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 18:20:51
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 14:20:46.607375 2026] [security2:error] [pid 5883:tid 5883] [client 125.91.110.128:51473] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mvpbees.com"] [uri "/backup/.env"] [unique_id "alkg_hjpV1U5QBIRb20cswAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 17:31:25
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 13:29:18.526601 2026] [security2:error] [pid 7164:tid 7164] [client 125.91.110.128:38866] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jpwatters.com"] [uri "/api/.env"] [unique_id "alkU7ltOIZ-N0kjYWwJWhQAAACw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 17:06:41
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 13:06:31.530935 2026] [security2:error] [pid 2040:tid 2040] [client 125.91.110.128:57943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lovestuff.net"] [uri "/.env.template"] [unique_id "alkPlzaVpqHxML5pwYL0bAAAADQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 15:12:05
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 11:11:58.244177 2026] [security2:error] [pid 18777:tid 18777] [client 125.91.110.128:51410] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dreamhomeappraisalservices.com"] [uri "/.env.development"] [unique_id "alj0viYGRMJkJOsKi29ABwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 14:53:01
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 125.91.110.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 10:50:53.866782 2026] [security2:error] [pid 28995:tid 28995] [client 125.91.110.128:39540] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.homeswithhorton.garretthillary.com"] [uri "/.env.backup"] [unique_id "aljvzSvd33x6mzCE81lZMAAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³π±
homeshowdomain.nl
2026-06-26 22:03:37
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-25.
show less
Web App Attack
SSH
Hacking