๐จ๐ฆ
Not Fake
2026-06-09 16:23:16
(3 weeks ago)
$f2bV_matches
Web App Attack
๐ซ๐ท
Baking333
2026-06-09 15:01:54
(3 weeks ago)
[redacted] 2a09:bac1:76e1:62b0::272:f0 - - [09/Jun/2026:16:01:52 +0100] "GET /.[redacted] HTTP/1.1" ...
show more
[redacted] 2a09:bac1:76e1:62b0::272:f0 - - [09/Jun/2026:16:01:52 +0100] "GET /.[redacted] HTTP/1.1" 302 5283 0/44408 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/131.0.0.0 Safari/537.36" [redacted] 2a09:bac1:76e1:62b0::272:f0 - - [09/Jun/2026:16:01:52 +0100] "GET / HTTP/1.1" 200 6825 0/111560 "https://[redacted]/.[redacted]" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/131.0.0.0 Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 10:35:33
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:35:28.792744 2026] [security2:error] [pid 15404:tid 15404] [client 2a09:bac1:76e1:62b0::272:f0:57750] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pseudo.space"] [uri "/.env.bak"] [unique_id "aifscDArlWIIhk6IK6017gAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 22:49:28
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 18:49:23.819450 2026] [security2:error] [pid 10795:tid 10795] [client 2a09:bac1:76e1:62b0::272:f0:64342] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.oceanrich.biz"] [uri "/.env.local"] [unique_id "aidG8wo345-NgdpBQnzHcAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 22:31:55
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 18:31:49.415838 2026] [security2:error] [pid 7622:tid 7622] [client 2a09:bac1:76e1:62b0::272:f0:42378] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.angove.biz"] [uri "/.env.old"] [unique_id "aidC1ZFYFBO2g5gUNLEBQAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 21:08:20
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 17:08:11.432778 2026] [security2:error] [pid 30893:tid 30893] [client 2a09:bac1:76e1:62b0::272:f0:9850] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.smid.tv"] [uri "/.env.dev"] [unique_id "aicvOyNrZXvuuzipLE6lrAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 17:52:49
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:52:45.531108 2026] [security2:error] [pid 25497:tid 25497] [client 2a09:bac1:76e1:62b0::272:f0:9612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.melton.space"] [uri "/.env_secret"] [unique_id "aicBbfIwtIYKnkoeZ_Zf5AAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 17:36:19
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:36:16.392180 2026] [security2:error] [pid 16652:tid 16652] [client 2a09:bac1:76e1:62b0::272:f0:33742] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.magacine.tv"] [uri "/server/.env"] [unique_id "aib9kE5NIHJ-IpjOm2MzuQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 15:54:01
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 11:53:58.088814 2026] [security2:error] [pid 19727:tid 19727] [client 2a09:bac1:76e1:62b0::272:f0:53530] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.rkm.biz"] [uri "/.env_backup"] [unique_id "aibllkRkiBVq8gkvzbeACAAAAGE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Gwyneth Llewelyn
2026-06-08 15:15:13
(3 weeks ago)
2026/06/08 16:15:11 [error] 1929836#1929836: *308632 access forbidden by rule, client: 2a09:bac1:76e ...
show more
2026/06/08 16:15:11 [error] 1929836#1929836: *308632 access forbidden by rule, client: 2a09:bac1:76e1:62b0::272:f0, server: api.betatechnologies.info, request: "GET /admin/.env HTTP/2.0", host: "api.betatechnologies.info"
2026/06/08 16:15:12 [error] 1929836#1929836: *308632 access forbidden by rule, client: 2a09:bac1:76e1:62b0::272:f0, server: api.betatechnologies.info, request: "GET /.env HTTP/2.0", host: "api.betatechnologies.info"
2026/06/08 16:15:12 [error] 1929836#1929836: *308632 access forbidden by rule, client: 2a09:bac1:76e1:62b0::272:f0, server: api.betatechnologies.info, request: "GET /backend/.env HTTP/2.0", host: "api.betatechnologies.info"
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 20:02:09
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 16:02:05.465936 2026] [security2:error] [pid 8871:tid 8871] [client 2a09:bac1:76e1:62b0::272:f0:12236] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.websites4sale.xyz"] [uri "/.env_backup"] [unique_id "aiXOPYDcfiC-rcq5XMv5rgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 17:24:38
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 13:24:30.916415 2026] [security2:error] [pid 2305:tid 2305] [client 2a09:bac1:76e1:62b0::272:f0:51724] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.scienceandpoetrywithgrandpa.xyz"] [uri "/.env.bak"] [unique_id "aiWpTnACUgtWRVQg0k63lQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
itsnixk
2026-06-07 17:22:02
(3 weeks ago)
(mod_security) mod_security (id:930130) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:930130) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 07 13:21:58.307643 2026] [security2:error] [pid 2423228:tid 2423355] [client 2a09:bac1:76e1:62b0::272:f0:24504] ModSecurity: Access denied with code 406 (phase 1). Matched phrase ".env" at REQUEST_FILENAME. [file "/etc/modsecurity.d/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "150"] [id "930130"] [msg "Restricted File Access Attempt"] [redacted] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/ATTACK-LFI"] [tag "capec/1000/255/153/126"] [redacted] [uri "/.env.development"] [unique_id "aiWottaUO7fM752kEmyJNQAAADw"]
show less
Port Scan
๐ซ๐ท
Baking333
2026-06-07 16:57:18
(3 weeks ago)
[redacted] 2a09:bac1:76e1:62b0::272:f0 - - [07/Jun/2026:17:57:16 +0100] "GET /server/.env HTTP/1.1" ...
show more
[redacted] 2a09:bac1:76e1:62b0::272:f0 - - [07/Jun/2026:17:57:16 +0100] "GET /server/.env HTTP/1.1" 302 1549 0/59652 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/131.0.0.0 Safari/537.36" [redacted] 2a09:bac1:76e1:62b0::272:f0 - - [07/Jun/2026:17:57:16 +0100] "GET /.[redacted] HTTP/1.1" 302 5278 0/78089 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/131.0.0.0 Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 16:45:23
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac1:76e1:62b0::272:f0 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 12:45:19.057168 2026] [security2:error] [pid 18722:tid 18722] [client 2a09:bac1:76e1:62b0::272:f0:51918] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.carmel.xyz"] [uri "/.env.dist"] [unique_id "aiWgH-nCDu76iR6I4-S2MwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack