๐ณ๐ฑ
homeshowdomain.nl
2026-06-08 21:59:14
(3 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07.
show less
Web App Attack
SSH
Hacking
๐ฉ๐ช
SCHAPPY
2026-06-08 11:17:43
(3 weeks ago)
Mutliple attempts to access forbidden web resources, HTTP code 403.
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 10:00:31
(3 weeks ago)
(mod_security) mod_security (id:949110) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:949110) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 06:00:21.840804 2026] [security2:error] [pid 20609:tid 20609] [client 2a02:4780:2b:1780:0:1928:ab2f:1:51486] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "agoodsign.biz"] [uri "/laravel/.env"] [unique_id "aiaStXOwxDfT1Dq3mOQ2CQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 08:02:38
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 04:02:29.479255 2026] [security2:error] [pid 423:tid 423] [client 2a02:4780:2b:1780:0:1928:ab2f:1:43780] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "liyatalton.com"] [uri "/.env"] [unique_id "aiZ3FUUViIrdcEAapngPhwAAADo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 07:20:09
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:20:05.634794 2026] [security2:error] [pid 751:tid 751] [client 2a02:4780:2b:1780:0:1928:ab2f:1:40974] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "infinite-fitness.com"] [uri "/core/.env.save"] [unique_id "aiZtJZLICycWM8Fjn4T5GAAAADU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 04:51:26
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 00:51:21.859719 2026] [security2:error] [pid 19512:tid 19512] [client 2a02:4780:2b:1780:0:1928:ab2f:1:17562] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fnavarro.com"] [uri "/core/.env.save"] [unique_id "aiZKSeBBzxqd3CTc4wKLyAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ipblock.com
2026-06-08 01:23:00
(3 weeks ago)
IPBlock protected site ID [2815-wdn][s=02].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
BlueWire Hosting
2026-06-08 00:20:49
(3 weeks ago)
Probing websites for vulnerabilities
Web App Attack
SQL Injection
๐ฉ๐ช
webko.si
2026-06-07 23:59:14
(3 weeks ago)
RBG: Bruteforce web app access, URI detail: '/backend/.env'.
Web App Attack
๐บ๐ธ
WellSpring
2026-06-07 21:43:12
(3 weeks ago)
env leak on 831.today/members/.env โ WellSpr.ing/NetSentinel civic-AI security layer
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 20:55:31
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 16:55:27.079585 2026] [security2:error] [pid 7041:tid 7041] [client 2a02:4780:2b:1780:0:1928:ab2f:1:22028] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magnoliahillproductions.com"] [uri "/api/.env.save"] [unique_id "aiXav6OgN_RVwnSr6TV_yAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Savvii
2026-06-07 20:55:17
(3 weeks ago)
20 attempts against mh-misbehave-ban on kale
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-06-07 20:20:26
(3 weeks ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 19:29:19
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2b:1780:0:1928:ab2f:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 15:29:15.006605 2026] [security2:error] [pid 7838:tid 7838] [client 2a02:4780:2b:1780:0:1928:ab2f:1:24298] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rotarymagnetics.com"] [uri "/.env"] [unique_id "aiXGixtr9IA2nr-iwH_6NAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2026-06-07 19:00:09
(3 weeks ago)
Repeated 404 errors, blocked by Fail2ban in custom-404 jail
Bad Web Bot