Anonymous
2026-07-19 02:07:19
(48 minutes ago)
[Sun Jul 19 04:07:18.088914 2026] [authz_core:error] [pid 12237] [client 169.58.36.215:58647] AH0163 ...
show more
[Sun Jul 19 04:07:18.088914 2026] [authz_core:error] [pid 12237] [client 169.58.36.215:58647] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Jul 19 04:07:18.507796 2026] [access_compat:error] [pid 28556] [client 169.58.36.215:58666] AH01797: client denied by server configuration: /var/www/html/.env
[Sun Jul 19 04:07:18.904084 2026] [access_compat:error] [pid 12238] [client 169.58.36.215:58700] AH01797: client denied by server configuration: /var/www/html/
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 01:14:29
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 169.58.36.215 (vmi3448577.contaboserver.net): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 169.58.36.215 (vmi3448577.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 21:14:22.829087 2026] [security2:error] [pid 2250:tid 2250] [client 169.58.36.215:64851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.180"] [uri "/.env"] [unique_id "alwk7tlPapckS_U7Y6jK6AAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
CK_beats
2026-07-18 23:35:02
(3 hours ago)
Blocked by os-abuseipdb on OPNsense firewall KN-FW01; 4 hits, proto=tcp, ports=80
Port Scan
Hacking
๐ฉ๐ช
sdos.es
2026-07-18 22:18:09
(4 hours ago)
"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"
Web App Attack
Anonymous
2026-07-18 21:53:06
(5 hours ago)
Reported from Nginx log analysis 17. Log: 169.58.36.215 - - [18/Jul/2026:xx:xx:xx 0200] "GET /.env ...
show more
Reported from Nginx log analysis 17. Log: 169.58.36.215 - - [18/Jul/2026:xx:xx:xx 0200] "GET /.env HTTP/1.1" xxx xxx "-" "python-requests/2.34.2" "-" "FR France Lauterbourg" "AS51167" "Contabo GmbH"
show less
Port Scan
Brute-Force
SSH
๐ฎ๐ช
AutosOnShow
2026-07-18 21:40:07
(5 hours ago)
blocked for webapp attack | path requested: /.env | seen at 2026-07-18 21:39:08.126 |
Web App Attack
Anonymous
2026-07-18 21:17:19
(5 hours ago)
[Sat Jul 18 23:17:18.584599 2026] [access_compat:error] [pid 1225554:tid 1225554] [client 169.58.36. ...
show more
[Sat Jul 18 23:17:18.584599 2026] [access_compat:error] [pid 1225554:tid 1225554] [client 169.58.36.215:65197] AH01797: client denied by server configuration: /var/www/html/.env
[Sat Jul 18 23:17:18.769054 2026] [access_compat:error] [pid 1180136:tid 1180136] [client 169.58.36.215:65220] AH01797: client denied by server configuration: /var/www/html/.env
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
Bedios GmbH
2026-07-18 20:50:37
(6 hours ago)
Login credentials theft attempt
Hacking
๐ฌ๐ง
Interceptor_HQ
2026-07-18 20:35:03
(6 hours ago)
request_uri: /.env -- automatic report --
Brute-Force
Hacking
๐ณ๐ฑ
wlt-blocker
2026-07-18 16:57:01
(9 hours ago)
Unauthorized access to webpage admin
Web App Attack
๐จ๐ณ
Peter Yu
2026-07-18 16:48:20
(10 hours ago)
Bad Web Bot
Web App Attack
๐ฌ๐ง
Bytemark
2026-07-18 16:24:57
(10 hours ago)
169.58.36.215 - - [18/Jul/2026:17:24:56 +0100] "GET /.env HTTP/1.1" 301 5258 "-" "python-requests/2. ...
show more
169.58.36.215 - - [18/Jul/2026:17:24:56 +0100] "GET /.env HTTP/1.1" 301 5258 "-" "python-requests/2.34.2"
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 15:12:08
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 169.58.36.215 (vmi3448577.contaboserver.net): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 169.58.36.215 (vmi3448577.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 11:12:03.639978 2026] [security2:error] [pid 20355:tid 20355] [client 169.58.36.215:60741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.188"] [uri "/.env"] [unique_id "aluXw0VNXI5t1PZRvT7xIwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 14:53:16
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 169.58.36.215 (vmi3448577.contaboserver.net): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 169.58.36.215 (vmi3448577.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 10:53:08.852086 2026] [security2:error] [pid 971137:tid 971137] [client 169.58.36.215:57819] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.210"] [uri "/.env"] [unique_id "aluTVKx_T1JhQjj_lRxcUAAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ช
AutosOnShow
2026-07-18 14:19:04
(12 hours ago)
blocked for webapp attack | path requested: /.env | seen at 2026-07-18 14:18:05.809 |
Web App Attack