๐ง๐พ
lns.bz
2026-06-26 19:29:28
(6 days ago)
.env scanning [BY]
Web App Attack
๐ฌ๐ง
consul.to
2026-06-26 17:54:04
(6 days ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 17:22:57
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 181.215.182.177 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.182.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 13:22:51.494244 2026] [security2:error] [pid 31504:tid 31504] [client 181.215.182.177:51928] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bassboatmagazine.com"] [uri "/.env"] [unique_id "aj61a3D4fTrKCL-BpX1tigAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 16:28:21
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 181.215.182.177 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.182.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 12:28:17.039080 2026] [security2:error] [pid 16353:tid 16353] [client 181.215.182.177:24281] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.puckerbottombikini.com"] [uri "/.env"] [unique_id "aj6oofCzAxDz4AdCthydrQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
lns.bz
2026-06-26 16:05:37
(6 days ago)
Web app attack [PL.Lu]
Exploited Host
Web App Attack
๐บ๐ธ
mnsf
2026-06-26 16:05:03
(6 days ago)
Abuse Detected (10)
Brute-Force
Web App Attack
๐ณ๐ฑ
ConsulHosting
2026-06-26 15:26:13
(6 days ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐ซ๐ฎ
kumiko
2026-06-26 15:25:52
(6 days ago)
[2026-06-26 18:25:52] Probing for dotfiles
"GET /.env HTTP/1.1" 301
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-06-26 15:11:03
(6 days ago)
2.280 requests to many distinct domains in 1 hour (2w1d16h)
Brute-Force
Bad Web Bot
๐ซ๐ท
ecode hosting
2026-06-26 15:06:04
(6 days ago)
Domain : paksoyteknikdestek.com
Rule : env
2026-06-26 15:03:37 10.100.1.20 GET /.env - 443 - 181.215 ...
show more
Domain : paksoyteknikdestek.com
Rule : env
2026-06-26 15:03:37 10.100.1.20 GET /.env - 443 - 181.215.182.177 HTTP/1.1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 - www.paksoyteknikdestek.com 200 0 0 19820 221 713 - -
show less
Hacking
SQL Injection
๐ฉ๐ช
big-cloud.nl
2026-06-26 15:03:27
(6 days ago)
Try to access /.env
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 14:45:43
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 181.215.182.177 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.182.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 10:45:39.399823 2026] [security2:error] [pid 10936:tid 10936] [client 181.215.182.177:28525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fancycleaners.com"] [uri "/.env"] [unique_id "aj6QkzkX5qcgwDrJDbpF6AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-26 07:05:14
(1 week ago)
Scanning/Probing (15)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 06:43:54
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 181.215.182.177 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.182.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 02:43:48.751339 2026] [security2:error] [pid 7637:tid 7637] [client 181.215.182.177:56120] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stewhist.org"] [uri "/.env"] [unique_id "aj4fpDoc9C0QDxvhvzuQnAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-03-28 16:30:29
(3 months ago)
Failed login attempt detected by Fail2Ban in plesk-postfix jail
Brute-Force