๐ฌ๐ง
openstrike.co.uk
2026-06-15 05:13:58
(2 weeks ago)
3 attacks on env grabbing URLs:
GET /.env HTTP/1.1
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-14 15:11:14
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 11:11:09.583156 2026] [security2:error] [pid 31179:tid 31179] [client 2400:8901::f03c:92ff:fe4c:95d2:39878] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thn.bz"] [uri "/.env"] [unique_id "ai7EjRm6ZUsHbfobiD03fQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-06-14 12:26:33
(2 weeks ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ฉ๐ช
BlueWire Hosting
2026-06-14 12:22:24
(2 weeks ago)
Probing websites for vulnerabilities
Web App Attack
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-06-12 17:13:16
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 13:13:08.694143 2026] [security2:error] [pid 31456:tid 31456] [client 2400:8901::f03c:92ff:fe4c:95d2:59998] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.guardmagic.eu"] [uri "/.env"] [unique_id "aiw-JBJKr8t4_3zn16DgGgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-12 16:18:22
(2 weeks ago)
2400:8901::f03c:92ff:fe4c:95d2 - - [12/Jun/2026:16:18:21 +0000] "GET /.env HTTP/1.1" 404 3776 "-" "M ...
show more
2400:8901::f03c:92ff:fe4c:95d2 - - [12/Jun/2026:16:18:21 +0000] "GET /.env HTTP/1.1" 404 3776 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0"
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 15:53:24
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 11:53:17.652984 2026] [security2:error] [pid 25344:tid 25344] [client 2400:8901::f03c:92ff:fe4c:95d2:35388] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.soundtrax.net"] [uri "/.env"] [unique_id "aiwrbSjfcQlQmcBVcJnNzwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 10:37:01
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:36:57.172343 2026] [security2:error] [pid 29787:tid 29787] [client 2400:8901::f03c:92ff:fe4c:95d2:41932] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.ultratecnologia.com.mx"] [uri "/.env"] [unique_id "aivhSa9Dx0DkxNU-f_uu9AAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-06-12 09:50:16
(2 weeks ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-12 01:31:04
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 21:30:58.644484 2026] [security2:error] [pid 1590:tid 1611] [client 2400:8901::f03c:92ff:fe4c:95d2:35440] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.marinkovich.co"] [uri "/.env"] [unique_id "aithUltXnjAMs1ZBKDq4fQAAARI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 22:19:18
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 18:19:15.785482 2026] [security2:error] [pid 702:tid 702] [client 2400:8901::f03c:92ff:fe4c:95d2:58532] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sionayra.tracybur.net"] [uri "/.env"] [unique_id "ais0Yz002lv4DVI4t9PsIgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 21:59:16
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:8901::f03c:92ff:fe4c:95d2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 17:59:05.681255 2026] [security2:error] [pid 27136:tid 27136] [client 2400:8901::f03c:92ff:fe4c:95d2:58188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sigiweb.net"] [uri "/.env"] [unique_id "aisvqZxfe9wq5fKpKO8PUwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack