๐บ๐ธ
TPI-Abuse
2026-06-16 17:47:44
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 13:47:37.661242 2026] [security2:error] [pid 29544:tid 29544] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:47732] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.conquesticon.org"] [uri "/.env"] [unique_id "ajGMOSNeZz-VoIBOVUbGQAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 17:29:10
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 13:29:02.009430 2026] [security2:error] [pid 29058:tid 29058] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:39108] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.comitedelafamille.org"] [uri "/.env"] [unique_id "ajGH3iIpkENCRV4QN9bBIAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 14:38:05
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 10:37:59.286580 2026] [security2:error] [pid 5864:tid 5864] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:60904] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vr-squaredance.kdgsf.xyz"] [uri "/.env"] [unique_id "ajFfx2lHXVJNUpmwmLvi3QAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-06-16 07:22:02
(2 weeks ago)
[TueJun1609:22:00.1933472026][security2:error][pid3124004:tid3124247][client2001:4b98:dc0:43:f816:3e ...
show more
[TueJun1609:22:00.1933472026][security2:error][pid3124004:tid3124247][client2001:4b98:dc0:43:f816:3eff:feb7:f65c:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"endlesspoolsticino.ch\"][uri\"/.env\"][unique_id\"ajD5mPih9O9XSRXQjXEwTQAAAMY\"]
show less
Hacking
Web App Attack
๐ณ๐ฑ
BlueWire Hosting
2026-06-16 05:54:29
(2 weeks ago)
Probing websites for vulnerabilities
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2026-06-16 05:15:01
(2 weeks ago)
4 attacks on env grabbing URLs:
GET /.env HTTP/1.1
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-15 17:48:16
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 13:48:09.805476 2026] [security2:error] [pid 31515:tid 31515] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:54396] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.statistician.cmabiblequizzing.org"] [uri "/.env"] [unique_id "ajA62ZTwTRFxFTc9kTkjBwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-06-15 09:50:53
(2 weeks ago)
Try to access /.env
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-14 09:57:31
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 05:57:26.192852 2026] [security2:error] [pid 31820:tid 31820] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:49966] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "q3.evolute.io"] [uri "/.env"] [unique_id "ai57Bmg3H7z2hnZjDGMapgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-14 01:09:19
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 21:09:14.425846 2026] [security2:error] [pid 11471:tid 11471] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:55228] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.stationrestaurant.ca"] [uri "/.env"] [unique_id "ai3_OpJ2dIUp4mHJQ8ANcAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 08:13:46
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 04:13:41.560635 2026] [security2:error] [pid 27130:tid 27130] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:59474] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cypraea.info"] [uri "/.env"] [unique_id "ai0RNV1mn7Mp9oUuYok4SAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 06:01:17
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:01:13.416001 2026] [security2:error] [pid 24708:tid 24708] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:46176] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eboredom.net"] [uri "/.env"] [unique_id "aizyKcyg_zhdkdiOU0TC8wAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 05:45:40
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 01:45:35.752888 2026] [security2:error] [pid 6698:tid 6698] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:57310] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dwars.net"] [uri "/.env"] [unique_id "aizuf-snm4FBaoXuRBwtEAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 20:28:58
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 16:28:53.239023 2026] [security2:error] [pid 20589:tid 20589] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:49940] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgegourmet.visionremota.info"] [uri "/.env"] [unique_id "aixsBaJK9N-ePgx-0C3_uAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 18:24:18
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2001:4b98:dc0:43:f816:3eff:feb7:f65c (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 14:24:13.757187 2026] [security2:error] [pid 20724:tid 20724] [client 2001:4b98:dc0:43:f816:3eff:feb7:f65c:36818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dmbarlow.us"] [uri "/.env"] [unique_id "aixOze-tiVijn8grrPnt3gAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack