๐ซ๐ท
Teufel100
2026-07-05 03:02:42
(3 minutes ago)
ModSecurity rejected a query
Brute-Force
Hacking
Web App Attack
๐ฉ๐ช
Phenix Info
2026-07-05 02:55:32
(10 minutes ago)
SmallGuard.fr - Forbidden Ext.
Web App Attack
๐ฉ๐ช
Lino Project
2026-07-05 02:53:12
(12 minutes ago)
80.87.206.103 - - [05/Jul/2026:04:53:08 +0200] "GET /.env HTTP/1.1" 404 397 "-" "Mozilla/5.0 (X11; L ...
show more
80.87.206.103 - - [05/Jul/2026:04:53:08 +0200] "GET /.env HTTP/1.1" 404 397 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ut-addicted.com
2026-07-05 02:43:52
(21 minutes ago)
\[Sun Jul 05 04:43:50.898584 2026\] \[:error\] \[pid 2763:tid 139785800742656\] \[client 80.87.206.1 ...
show more
\[Sun Jul 05 04:43:50.898584 2026\] \[:error\] \[pid 2763:tid 139785800742656\] \[client 80.87.206.103:53145\] \[client 80.87.206.103\] ModSecurity: Access denied with code 403 \(phase 2\). Operator GE matched 5 at TX:anomaly_score. \[file "/usr/local/apache/modsecurity-owasp-latest/rules/REQUEST-949-BLOCKING-EVALUATION.conf"\] \[line "57"\] \[id "949110"\] \[msg "Inbound Anomaly Score Exceeded \(Total Score: 8\)"\] \[severity "CRITICAL"\] \[tag "application-multi"\] \[tag "language-multi"\] \[tag "platform-multi"\] \[tag "attack-generic"\] \[hostname "78.46.187.162"\] \[uri "/.env"\] \[unique_id "aknE5rKnpcJOmdwu-M86gwAAAMo"\]
show less
Brute-Force
Web App Attack
๐ฎ๐ช
Jim Keir
2026-07-05 02:34:42
(31 minutes ago)
2026-07-05 02:34:42 80.87.206.103 File scanning, blocking 80.87.206.103 for 5 minutes
Web App Attack
๐ฌ๐ง
Mendip_Defender
2026-07-05 02:31:49
(33 minutes ago)
[05/Jul/2026:02:05:28.487978 +0100] akmt2GJIOSyB1DoaPnvsagAAAFE 80.87.206.103 44524 188.246.206.60 7 ...
show more
[05/Jul/2026:02:05:28.487978 +0100] akmt2GJIOSyB1DoaPnvsagAAAFE 80.87.206.103 44524 188.246.206.60 7080
[05/Jul/2026:03:31:40.572599 +0100] aknCDGJIOSyB1DoaPnvvwgAAAEk 80.87.206.103 49316 188.246.206.60 7080
...
show less
Brute-Force
Anonymous
2026-07-05 02:29:30
(36 minutes ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐ฎ๐ช
AutosOnShow
2026-07-05 02:20:06
(45 minutes ago)
blocked for webapp attack | path requested: /.env | seen at 2026-07-05 02:19:29.856 |
Web App Attack
๐ฆ๐บ
dyln
2026-07-05 02:16:00
(49 minutes ago)
Dyls honeypot brute-force: proto8 (4 total hits)
Brute-Force
๐ฉ๐ช
pigro
2026-07-05 01:50:36
(1 hour ago)
80.87.206.103 - - [05/Jul/2026:01:57:23 +0200] "GET /.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (X11; L ...
show more
80.87.206.103 - - [05/Jul/2026:01:57:23 +0200] "GET /.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
80.87.206.103 - - [05/Jul/2026:03:50:36 +0200] "GET /.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
...
show less
Web App Attack
๐ฉ๐ช
HoneyPotFRI
2026-07-05 01:42:16
(1 hour ago)
80.87.206.103 - - [05/Jul/2026:03:42:00 +0200] "GET /.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (X11; L ...
show more
80.87.206.103 - - [05/Jul/2026:03:42:00 +0200] "GET /.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
80.87.206.10
...
show less
Bad Web Bot
Web App Attack
๐ซ๐ฎ
kumiko
2026-07-05 01:05:22
(2 hours ago)
[2026-07-05 04:05:21] Probing for dotfiles
"GET /.env HTTP/1.1" 403
Bad Web Bot
Web App Attack
๐ณ๐ฑ
BlueWire Hosting
2026-07-05 01:04:56
(2 hours ago)
Probing websites for vulnerabilities
Web App Attack
๐ฌ๐ง
OptimusGO
2026-07-05 01:04:03
(2 hours ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-07-05 02:04:03 UTC
Log evidence:
80.87.206.103 - - [05/Jul/2026:02:04:02 +0100] "GET /.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
07/05/2026-02:04:02.290756 [wDrop] [**] [1:1000110:2] SECURITY CRITICAL: .env File Access Attempt - INSTANT BAN [**] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 80.87.206.103:52498 -> 185.127.18.66:80
07/05/2026-02:04:02.290756 [wDrop] [**] [1:7000911:2] FINSERV CRITICAL: Environment File Access [**] [Classification: Web Application Attack] [Priority: 1] {TCP} 80.87.206.103:52498 -> 185.127.18.66:80
show less
Port Scan
Brute-Force
๐ซ๐ท
Baking333
2026-07-05 00:59:24
(2 hours ago)
redacted:80 80.87.206.103 - - [05/Jul/2026:01:59:18 +0100] "GET /.env HTTP/1.1" 200 203 0/33669 "-" ...
show more
redacted:80 80.87.206.103 - - [05/Jul/2026:01:59:18 +0100] "GET /.env HTTP/1.1" 200 203 0/33669 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" redacted:443 80.87.206.103 - - [05/Jul/2026:01:59:22 +0100] "GET /.env HTTP/1.1" 200 5443 0/26521 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
show less
Bad Web Bot
Web App Attack