๐ง๐ช
sid3windr
2026-07-15 15:54:34
(10 minutes ago)
GET /.env (Tarpitted for 19m44s, wasted 69.49kB)
Web App Attack
๐ฉ๐ช
Trueforce Threat Report
2026-07-15 15:37:08
(28 minutes ago)
Automated report, trolling for resource vulnerabilities
Bad Web Bot
Web App Attack
Anonymous
2026-07-15 15:06:45
(58 minutes ago)
Blocked: Reason='Suspicious traffic score=85 (review-based detection)'; Requests=49
Hacking
๐ฌ๐ง
Aetherweb Ark
2026-07-15 14:55:45
(1 hour ago)
(mod_security) mod_security (id:949110) triggered by 41.143.189.237 (MA/Morocco/-): N in the last X ...
show more
(mod_security) mod_security (id:949110) triggered by 41.143.189.237 (MA/Morocco/-): N in the last X secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 14:52:36
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 10:52:31.104028 2026] [security2:error] [pid 2232:tid 2232] [client 41.143.189.237:57467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cayman-boat-registration.com"] [uri "/.env"] [unique_id "aleer6fh3IwYmr5I83Hr-wAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 14:36:17
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 10:36:12.794612 2026] [security2:error] [pid 6862:tid 6862] [client 41.143.189.237:60296] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.market.nationalenq.com"] [uri "/.env"] [unique_id "alea3OYLDPVVcBGyHL59EQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
seniorlinuxadmin
2026-07-15 14:14:42
(1 hour ago)
41.143.189.237 - - [15/Jul/2026:15:14:41 +0100] "GET /.env HTTP/1.1" 403 158 "-" "-"
Port Scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 14:04:03
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 10:03:57.837294 2026] [security2:error] [pid 5490:tid 5577] [client 41.143.189.237:52814] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kaulaniconsulting.com"] [uri "/.env"] [unique_id "aleTTd0ljk8dRBfwi2hM-AAAAcc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-15 13:52:03
(2 hours ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 13:36:49
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 09:36:43.935232 2026] [security2:error] [pid 29243:tid 29243] [client 41.143.189.237:50207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.title-26.vittariadesign.com"] [uri "/.env"] [unique_id "aleM67SdF3ru8tFG_Bc63gAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Jimbo67
2026-07-15 13:01:48
(3 hours ago)
Cloudflare WAF: 1 hits in 30s | action=block | abuse=confirmed_abuse | categories=21 | rule_id=0189a ...
show more
Cloudflare WAF: 1 hits in 30s | action=block | abuse=confirmed_abuse | categories=21 | rule_id=0189a8c2c2ab4a60bc709bad14577d18 | URIs=/.env | confidence=0.95
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 13:00:07
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 41.143.189.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 09:00:01.425871 2026] [security2:error] [pid 17445:tid 17445] [client 41.143.189.237:55741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mascotrack.com"] [uri "/.env"] [unique_id "aleEUWG-5oyBAB92Bomb3wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
tsZero
2026-07-15 12:46:37
(3 hours ago)
Scan example: path=/.env status=403
Hacking
๐ณ๐ด
jad-abuse
2026-07-15 12:45:25
(3 hours ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe. Observed by 1 sensor(s); 1 hits.
show less
Web App Attack
๐ฑ๐ป
garmtech.com
2026-07-15 12:44:02
(3 hours ago)
IM360 WAF: Direct access to sensitive file or dotfile MV:/.env
Web App Attack