Anonymous
2026-07-13 11:03:02
(2 days ago)
"GET /.env HTTP/1.1"
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 05:19:29
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 01:19:22.976429 2026] [security2:error] [pid 17347:tid 17347] [client 8.219.191.40:49406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blog.didemozbek.com.pist.org.tr"] [uri "/.env"] [unique_id "alR1WqsP1-bAxOyqvM7L-AAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 04:49:30
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 00:49:22.742495 2026] [security2:error] [pid 4604:tid 4604] [client 8.219.191.40:46342] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.4115thewestford.com"] [uri "/.env"] [unique_id "alRuUrvVcN3SfwHYq7qzmwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
pltcldvlpr
2026-07-13 04:47:27
(3 days ago)
CMS/framework probe: 8.219.191.40 - - [13/Jul/2026:06:47:26 +0200] "GET /.env HTTP/1.1" 444 0 "-" "M ...
show more
CMS/framework probe: 8.219.191.40 - - [13/Jul/2026:06:47:26 +0200] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (ZZ; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." country=SG
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 04:33:57
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 00:33:52.729231 2026] [security2:error] [pid 9014:tid 9014] [client 8.219.191.40:43992] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prcs.biz"] [uri "/.env"] [unique_id "alRqsG8TPe7dRVJx_-6uOwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-13 04:30:17
(3 days ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 8.219.191.40 (SG/Singapore/-): 2 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 8.219.191.40 (SG/Singapore/-): 2 in the last 3600 secs
show less
Web App Attack
๐ง๐ช
voormedia
2026-07-13 04:23:09
(3 days ago)
Accessed trap at '/.env'
Web App Attack
Anonymous
2026-07-13 04:10:38
(3 days ago)
Web Server Exposed Git Repository Information Disclosure.
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-13 03:47:43
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:47:40.732231 2026] [security2:error] [pid 21592:tid 21592] [client 8.219.191.40:53688] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jamescreates.org"] [uri "/.git/config"] [unique_id "alRf3FWq88aSyS4bWMAplwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
Progetto1
2026-07-13 03:35:03
(3 days ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ฟ๐ฆ
conure
2026-07-13 03:22:20
(3 days ago)
csagent: score 20.5: secrets grab x2, 404 noise floor x2; 1 domain(s) in 0s
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 03:20:44
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.219.191.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:20:37.563609 2026] [security2:error] [pid 21521:tid 21521] [client 8.219.191.40:58482] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "feiz.church"] [uri "/.env"] [unique_id "alRZhQklpOXEj-t4GUW2hQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-13 03:00:13
(3 days ago)
Try to access /.env
Web App Attack
๐ซ๐ท
masterguru
2026-07-13 02:59:56
(3 days ago)
Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
๐ซ๐ท
โจ
2026-07-13 02:38:13
(3 days ago)
Domain : redirect.netenergy.uk
Rule : env
2026-07-13 02:35:37 217.194.210.152 GET /.env - 443 - 8.21 ...
show more
Domain : redirect.netenergy.uk
Rule : env
2026-07-13 02:35:37 217.194.210.152 GET /.env - 443 - 8.219.191.40 HTTP/1.1 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0 - barnflorist.com 404 0 2 1552 202 206 - -
show less
Hacking
SQL Injection