π¨π¦
internetworld
2026-07-08 01:56:18
(2 days ago)
187.77.135.250 - - [08/Jul/2026:01:56:18 +0000] "GET /admin/.env HTTP/1.1" 206 513 "-" "Mozilla/5.0 ...
show more
187.77.135.250 - - [08/Jul/2026:01:56:18 +0000] "GET /admin/.env HTTP/1.1" 206 513 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-08 01:13:33
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 21:13:27.675358 2026] [security2:error] [pid 21856:tid 21856] [client 187.77.135.250:40746] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "otcraftworks.com"] [uri "/laravel/.env"] [unique_id "ak2kNyC9LUAboRuYYC58lQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πΎ
lns.bz
2026-07-08 00:06:33
(2 days ago)
.env scanning [BY]
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-07 15:05:57
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 11:05:51.867535 2026] [security2:error] [pid 23594:tid 23598] [client 187.77.135.250:33892] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "otemaetk.com"] [uri "/api/.env.save"] [unique_id "ak0Vz6X4SItTJbOzS-21DwAAAIA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
lespbaj
2026-07-07 05:26:18
(2 days ago)
{"time":"2026-07-07T05:26:16+00:00","ip":"187.77.135.250","method":"GET","uri":"/backend/.env","ua": ...
show more
{"time":"2026-07-07T05:26:16+00:00","ip":"187.77.135.250","method":"GET","uri":"/backend/.env","ua":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36","referer":""}
...
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-07 03:25:24
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 23:25:17.896896 2026] [security2:error] [pid 11084:tid 11084] [client 187.77.135.250:50664] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2massociatesllc.com"] [uri "/backend/.env"] [unique_id "akxxnXoBGNeQiAzF5dmkaAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-07 02:56:09
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 22:56:04.334009 2026] [security2:error] [pid 18923:tid 18923] [client 187.77.135.250:40338] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oposicionesyconcursos.es"] [uri "/core/.env.save"] [unique_id "akxqxBCTsJ_0WnQYQTgZHQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Baking333
2026-07-07 00:09:58
(3 days ago)
[redacted] 187.77.135.250 - - [07/Jul/2026:01:09:55 +0100] "GET /members/.env HTTP/1.1" 302 6753 0/5 ...
show more
[redacted] 187.77.135.250 - - [07/Jul/2026:01:09:55 +0100] "GET /members/.env HTTP/1.1" 302 6753 0/52392 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" [redacted] 187.77.135.250 - - [07/Jul/2026:01:09:56 +0100] "GET /laravel/.env HTTP/1.1" 302 6753 0/46129 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-06 14:38:35
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 10:38:31.865221 2026] [security2:error] [pid 30380:tid 30380] [client 187.77.135.250:54796] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "otfes.com"] [uri "/laravel/.env"] [unique_id "aku956QxU1dVLF3PXSOlmgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
big-cloud.nl
2026-07-06 09:22:36
(3 days ago)
Try to access /members/.env
Web App Attack
Anonymous
2026-07-06 09:13:37
(3 days ago)
187.77.135.250 - - [06/Jul/2026:17:13:37 +0800] "GET /members/.env HTTP/1.1" 301 - "-" "Mozilla/5.0 ...
show more
187.77.135.250 - - [06/Jul/2026:17:13:37 +0800] "GET /members/.env HTTP/1.1" 301 - "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-06 07:24:36
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 03:24:30.652012 2026] [security2:error] [pid 32455:tid 32455] [client 187.77.135.250:44336] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "1cdn.com"] [uri "/api/.env.save"] [unique_id "aktYLsgVMojPbAHyUwUDIgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-06 06:41:05
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 02:41:00.424617 2026] [security2:error] [pid 445:tid 445] [client 187.77.135.250:47196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pacepk.com"] [uri "/backend/.env"] [unique_id "aktN_Kxfe1znzvFwW2S_FgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mw
2026-07-06 00:01:18
(4 days ago)
GET /.env.save HTTP/1.1
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-05 21:11:49
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 187.77.135.250 (srv1457569.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 17:11:41.769917 2026] [security2:error] [pid 24639:tid 24639] [client 187.77.135.250:35772] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2janderson.com"] [uri "/core/.env.save"] [unique_id "akrIjYnwVM0TaRV9phPjkQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack