๐ณ๐ฑ
homeshowdomain.nl
2026-06-08 21:59:26
(3 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-08 12:17:17
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 08:17:09.682986 2026] [security2:error] [pid 13790:tid 13790] [client 2a02:4780:11:1436:0:205e:24ca:1:59622] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fuentevictoria.com"] [uri "/api/.env"] [unique_id "aiayxd9Ur4UUCMkW556piwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 11:22:48
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:22:40.671514 2026] [security2:error] [pid 7764:tid 7764] [client 2a02:4780:11:1436:0:205e:24ca:1:42304] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thomasgardner.com"] [uri "/laravel/.env"] [unique_id "aiamAOCTZFNP8vglUdftZAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Gwyneth Llewelyn
2026-06-08 10:54:12
(3 weeks ago)
2026/06/08 11:54:10 [error] 1929838#1929838: *253912 access forbidden by rule, client: 2a02:4780:11: ...
show more
2026/06/08 11:54:10 [error] 1929838#1929838: *253912 access forbidden by rule, client: 2a02:4780:11:1436:0:205e:24ca:1, server: feminina.eu, request: "GET /dev/.env HTTP/2.0", host: "feminina.eu"
2026/06/08 11:54:10 [error] 1929836#1929836: *253911 access forbidden by rule, client: 2a02:4780:11:1436:0:205e:24ca:1, server: feminina.eu, request: "GET /members/.env HTTP/2.0", host: "feminina.eu"
2026/06/08 11:54:10 [error] 1929838#1929838: *253913 access forbidden by rule, client: 2a02:4780:11:1436:0:205e:24ca:1, server: feminina.eu, request: "GET /core/.env HTTP/2.0", host: "feminina.eu"
show less
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2026-06-08 09:53:16
(3 weeks ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 08:15:18
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 04:15:12.676154 2026] [security2:error] [pid 14547:tid 14547] [client 2a02:4780:11:1436:0:205e:24ca:1:24990] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "searchaprice.com"] [uri "/.env"] [unique_id "aiZ6EN1srxKhOyouOWmgXQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 07:50:44
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:50:40.853131 2026] [security2:error] [pid 13040:tid 13040] [client 2a02:4780:11:1436:0:205e:24ca:1:54574] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "comitedelafamille.org"] [uri "/backend/.env"] [unique_id "aiZ0UCnTHEBq0dLoF-CfGgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 01:21:57
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 21:21:54.250090 2026] [security2:error] [pid 1672:tid 1672] [client 2a02:4780:11:1436:0:205e:24ca:1:22782] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grupo-visalud.com"] [uri "/core/.env.save"] [unique_id "aiYZMu-6j9Xqj3sar_FMMgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 00:58:07
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 20:58:00.329781 2026] [security2:error] [pid 1352:tid 1352] [client 2a02:4780:11:1436:0:205e:24ca:1:65096] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uklanor.com"] [uri "/laravel/.env"] [unique_id "aiYTmCMklQfohlaUpRuTGwAAADg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 00:03:29
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 20:03:26.362322 2026] [security2:error] [pid 27008:tid 27008] [client 2a02:4780:11:1436:0:205e:24ca:1:20768] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teenaarunoceans.com"] [uri "/admin/.env"] [unique_id "aiYGzpJ7Xq-Q9MPmXQd_LgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 22:54:56
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 18:54:50.434005 2026] [security2:error] [pid 9728:tid 9739] [client 2a02:4780:11:1436:0:205e:24ca:1:29536] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mastersofthesecrets.com"] [uri "/core/.env.save"] [unique_id "aiX2upbEZi6QWFGp3MVJaQAAAQM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-06-07 20:24:26
(3 weeks ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 18:26:42
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 14:26:36.047296 2026] [security2:error] [pid 10183:tid 10183] [client 2a02:4780:11:1436:0:205e:24ca:1:43668] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ilovecoffeegroup.com"] [uri "/api/.env.save"] [unique_id "aiW33Kyl9MLlH0g8XnZCpgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 17:04:10
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 13:04:04.997195 2026] [security2:error] [pid 6690:tid 6690] [client 2a02:4780:11:1436:0:205e:24ca:1:20288] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gdrankin.com"] [uri "/core/.env"] [unique_id "aiWkhO_ZzlBYDvEIeKE27QAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 16:37:20
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:1436:0:205e:24ca:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 12:37:16.828884 2026] [security2:error] [pid 11005:tid 11005] [client 2a02:4780:11:1436:0:205e:24ca:1:25088] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "allynrealty.com"] [uri "/admin/.env"] [unique_id "aiWePBCFnvCjv7BrCldpRwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack