๐ณ๐ฑ
homeshowdomain.nl
2026-07-16 22:01:04
(3 hours ago)
Auto-ban: >3000 req/min op 2026-07-16
Web App Attack
SSH
Hacking
Anonymous
2026-07-16 20:03:39
(5 hours ago)
128.90.169.15 - - [16/Jul/2026:20:03:39 +0000] "GET /.env HTTP/1.1" 404 7344 "-" "Mozilla/5.0 (Macin ...
show more
128.90.169.15 - - [16/Jul/2026:20:03:39 +0000] "GET /.env HTTP/1.1" 404 7344 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_8; en-us) AppleWebKit/534.50 (KHTML, like Gecko) Version/5.1 Safari/534.50"
...
show less
Brute-Force
Web App Attack
๐ซ๐ท
Baking333
2026-07-16 19:12:31
(5 hours ago)
[redacted] 128.90.169.15 - - [16/Jul/2026:20:07:33 +0100] "GET /.env HTTP/1.1" 302 6773 0/53376 "-" ...
show more
[redacted] 128.90.169.15 - - [16/Jul/2026:20:07:33 +0100] "GET /.env HTTP/1.1" 302 6773 0/53376 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" [redacted] 128.90.169.15 - - [16/Jul/2026:20:12:30 +0100] "GET /.env HTTP/1.1" 302 6773 0/164486 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 13:11:50
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 128.90.169.15 (undefined.hostname.localhost): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 128.90.169.15 (undefined.hostname.localhost): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 09:11:44.318248 2026] [security2:error] [pid 14060:tid 14060] [client 128.90.169.15:56479] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bayareahiphopforever.org"] [uri "/.env"] [unique_id "aljYkFRA2oxo2OmM5_jGrAAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:34:42
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 128.90.169.15 (undefined.hostname.localhost): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 128.90.169.15 (undefined.hostname.localhost): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:34:38.170573 2026] [security2:error] [pid 31069:tid 31069] [client 128.90.169.15:55173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "appalachianfolkmagician.com"] [uri "/.env"] [unique_id "alhDPnfRUYaHjLujqXeLiAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:11:32
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 128.90.169.15 (undefined.hostname.localhost): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 128.90.169.15 (undefined.hostname.localhost): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:11:24.976173 2026] [security2:error] [pid 306:tid 306] [client 128.90.169.15:61012] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beyond.best"] [uri "/.env"] [unique_id "alg9zEUT6NKhrBvBsCDS1QAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 00:53:14
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 128.90.169.15 (undefined.hostname.localhost): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 128.90.169.15 (undefined.hostname.localhost): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 20:53:06.486667 2026] [security2:error] [pid 5834:tid 5834] [client 128.90.169.15:53465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agrizel.com"] [uri "/.env"] [unique_id "algrcoPzXjZCJRECUzmCtAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2026-07-16 00:29:10
(1 day ago)
IM360 WAF: Direct access to sensitive file or dotfile MV:/.env
Web App Attack
๐บ๐ธ
Starburst SysOp Team
2025-12-02 20:47:50
(7 months ago)
Host header is a numeric IP address. Pattern match "(?:^( (920350-stl2-17)
Hacking
Bad Web Bot
Anonymous
2024-10-30 01:47:37
(1 year ago)
Malicious activity detected
Hacking
Web App Attack
Anonymous
2024-09-01 15:42:57
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐จ๐ญ
backslash
2024-05-05 19:05:04
(2 years ago)
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
Bad Web Bot