๐ซ๐ท
matthieul.dev
2026-07-09 00:15:26
(3 days ago)
Blocked by os-abuseipdb; 5 hits, proto=tcp, ports=1619
Port Scan
Brute-Force
๐ซ๐ท
geot
2026-07-02 18:56:38
(1 week ago)
GET /.env HTTP/1.1
GET /.git/HEAD HTTP/1.1
Hacking
Web App Attack
Anonymous
2026-06-29 18:59:18
(1 week ago)
"GET /.env HTTP/1.1"
Hacking
Web App Attack
๐ฉ๐ช
iRaphi05
2026-06-29 18:59:13
(1 week ago)
Honeypot detection: GET request on /.env | User-Agent: fast-tcp-request/1.0
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 18:58:12
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 14:58:09.314831 2026] [security2:error] [pid 13547:tid 13547] [client 170.62.100.156:60849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.245"] [uri "/.env"] [unique_id "akLAQSpPuCj4xb-_JLsubgAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
CBJ
2026-06-29 18:42:57
(1 week ago)
fail2ban: apache-filepath-recon
...
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 18:13:11
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 14:13:04.118698 2026] [security2:error] [pid 22104:tid 22104] [client 170.62.100.156:60318] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.251"] [uri "/.env"] [unique_id "akK1sN4nw_bzTL4lYa0p5wAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Dechavanne
2026-06-29 18:00:10
(1 week ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 17:53:52
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 13:53:47.512914 2026] [security2:error] [pid 24729:tid 24729] [client 170.62.100.156:62604] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.16"] [uri "/.env"] [unique_id "akKxK07BXsSdiQCZU9LAPQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 17:10:58
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 13:10:50.773318 2026] [security2:error] [pid 19217:tid 19240] [client 170.62.100.156:63129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.86"] [uri "/.env"] [unique_id "akKnGgZp9XbG1yLnh-JuxgAAAJI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ช
AutosOnShow
2026-06-29 16:52:05
(1 week ago)
blocked for webapp attack | path requested: /.env | seen at 2026-06-29 16:51:13.102 |
Web App Attack
๐จ๐ฟ
ptlab
2026-06-29 16:00:04
(1 week ago)
Detected env_leak attack from WP-host.
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 15:41:23
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.62.100.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 11:41:19.605758 2026] [security2:error] [pid 29792:tid 29792] [client 170.62.100.156:49492] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.70"] [uri "/.env"] [unique_id "akKSH4C2seJYngO7MrnDFgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
genokrad
2026-06-29 15:40:06
(1 week ago)
Direct ip access to website TCP 80/443, path "/.git/HEAD" [fast-tcp-request/1.0].
Port Scan
Web App Attack
๐บ๐ธ
Power Ca
2026-06-29 15:36:06
(1 week ago)
170.62.100.156 - - [29/Jun/2026:15:36:04 +0000] "GET /.env HTTP/1.1" 301 178 "-" "fast-tcp-request/1 ...
show more
170.62.100.156 - - [29/Jun/2026:15:36:04 +0000] "GET /.env HTTP/1.1" 301 178 "-" "fast-tcp-request/1.0"
...
show less
Web App Attack
Hacking