๐ฉ๐ช
big-cloud.nl
2026-07-02 00:46:05
(1 day ago)
Try to access /.env
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-07-01 22:27:29
(1 day ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-01 22:04:43
(1 day ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ธ
WellSpring
2026-07-01 19:47:48
(2 days ago)
env leak on 972.today/public/.env โ WellSpr.ing/NetSentinel civic-AI security layer
Web App Attack
๐ฉ๐ช
dbmwebdesign
2026-07-01 18:05:51
(2 days ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-07-01 16:19:58
(2 days ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
Anonymous
2026-07-01 14:47:35
(2 days ago)
177.246.206.135 - - [01/Jul/2026:22:47:35 +0800] "GET /.env.development HTTP/1.1" 404 196 "-" "Mozil ...
show more
177.246.206.135 - - [01/Jul/2026:22:47:35 +0800] "GET /.env.development HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 (Silvy X Ran)"
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
Manuel Braeuer
2026-07-01 14:35:05
(2 days ago)
177.246.206.135 - - [01/Jul/2026:16:35:04 +0200] "GET /.env HTTP/1.1" 403 6257 "-" "Mozilla/5.0 (Win ...
show more
177.246.206.135 - - [01/Jul/2026:16:35:04 +0200] "GET /.env HTTP/1.1" 403 6257 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 (Silvy X Ran)"
177.246.206.135 - - [01/Jul/2026:16:35:04 +0200] "GET /.env.local HTTP/1.1" 403 6257 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 (Silvy X Ran)"
177.246.206.135 - - [01/Jul/2026:16:35:04 +0200] "GET /.env.production HTTP/1.1" 403 6257 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 (Silvy X Ran)"
177.246.206.135 - - [01/Jul/2026:16:35:04 +0200] "GET /.env.development HTTP/1.1" 403 6257 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 (Silvy X Ran)"
177.246.206.135 - - [01/Jul/2026:16:35:05 +0200] "GET /.env.dev HTTP/1.1" 403 6257 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x6
...
show less
Web App Attack
๐ฌ๐ง
Axel
2026-07-01 14:02:00
(2 days ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /client/.env ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /client/.env Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐ฌ๐ง
consul.to
2026-07-01 13:33:11
(2 days ago)
Web attack/malicious scanning detected
Web App Attack
๐ฉ๐ช
4server
2026-07-01 12:53:06
(2 days ago)
[WedJul0114:53:02.9509452026][security2:error][pid1555168:tid1555283][client177.246.206.135:0]ModSec ...
show more
[WedJul0114:53:02.9509452026][security2:error][pid1555168:tid1555283][client177.246.206.135:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\|passwd\|group\)\|www_\?acl\)\|global\\\\\\\\.asa\|httpd\\\\\\\\.conf\|boot\\\\\\\\.ini\|web.config\)\\\\\\\\b\|\(\|\^\|\\\\\\\\.\\\\\\\\.\)/etc/\|/\\\\\\\\.\(\?:history\|bash_history\|sh_history\|env\)\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"autodiscover.gmint.ch\"][uri\"/private/.env\"][unique_id\"akUNrk3gyxUzqH_K3-PJbAAAAQs\"]
show less
Port Scan
Brute-Force
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-07-01 11:00:40
(2 days ago)
dot file probe
Web App Attack
Anonymous
2026-07-01 10:59:36
(2 days ago)
(caddyscan) Scanner path probe from 177.246.206.135 (MX/Mexico/customer-mty-public-cgn-206-135.megar ...
show more
(caddyscan) Scanner path probe from 177.246.206.135 (MX/Mexico/customer-mty-public-cgn-206-135.megared.net.mx): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 177.246.206.135 - - [01/Jul/2026:10:59:32 +0000] "GET /actuator/env HTTP/1.1"
[REDACTED] 200 2627 177.246.206.135 - - [01/Jul/2026:10:59:32 +0000] "GET /actuator/configprops HTTP/1.1"
[REDACTED] 200 2627 177.246.206.135 - - [01/Jul/2026:10:59:32 +0000] "GET /backup/.env HTTP/1.1"
[REDACTED] 200 2627 177.246.206.135 - - [01/Jul/2026:10:59:33 +0000] "GET /backups/.env HTTP/1.1"
[REDACTED] 200 2627 177.246.206.135 - - [01/Jul/2026:10:59:33 +0000] "GET /old/.env HTTP/1.1"
show less
Port Scan
๐ฉ๐ช
Bedios GmbH
2026-07-01 10:55:05
(2 days ago)
Wordpress hacking attempt
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-07-01 10:45:48
(2 days ago)
177.246.206.135 - - [01/Jul/2026:13:45:47 +0300] "GET /config/.env HTTP/1.1" 404 4709 "-" "Mozilla/5 ...
show more
177.246.206.135 - - [01/Jul/2026:13:45:47 +0300] "GET /config/.env HTTP/1.1" 404 4709 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 (Silvy X Ran)"
...
show less
Web App Attack