myintarweb
2025-01-19 22:55:34
(6 days ago)
140.245.46.21 - - [29/Dec/2024:02:11:38 +0000] 80 "GET /phpinfo.php HTTP/1.1" 301 1683 "-" "Mozilla/ ... show more 140.245.46.21 - - [29/Dec/2024:02:11:38 +0000] 80 "GET /phpinfo.php HTTP/1.1" 301 1683 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
... show less
Hacking
Bad Web Bot
Web App Attack
Anonymous
2025-01-05 09:12:47
(2 weeks ago)
Ports: 80,443; Direction: 0; Trigger: LF_MODSEC
Brute-Force
SSH
paissangroup
2025-01-05 05:19:40
(2 weeks ago)
Multiple WAF Violations
Web App Attack
guillaume illien
2025-01-04 22:58:06
(3 weeks ago)
140.245.46.21 - - [04/Jan/2025:22:58:04 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT ... show more 140.245.46.21 - - [04/Jan/2025:22:58:04 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [04/Jan/2025:22:58:04 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [04/Jan/2025:22:58:04 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [04/Jan/2025:22:58:05 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [04/Jan/2025:22:58:05 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [04/Jan/2025:22:5
... show less
Hacking
Brute-Force
Web App Attack
SSH
Prodscape
2025-01-04 20:13:03
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 140.245.46.21 (SG/Singapore/-): 5 in the last 8 ... show more (mod_security) mod_security (id:210492) triggered by 140.245.46.21 (SG/Singapore/-): 5 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC show less
Port Scan
Anonymous
2025-01-04 16:18:34
(3 weeks ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2025-01-04 14:06:42
(3 weeks ago)
access denied too many times (more than 12 attempts in 60 seconds)
...
Brute-Force
Web App Attack
Anonymous
2025-01-04 13:27:45
(3 weeks ago)
(mod_security) mod_security triggered on hostname [redacted] 140.245.46.21 (SG/Singapore/-)
SQL Injection
expandmade.com
2025-01-03 22:08:49
(3 weeks ago)
trolling for installation vulnerabilities [03/Jan/2025:22:08:49 "GET /info.php"]
Web App Attack
paissangroup
2025-01-03 17:38:57
(3 weeks ago)
Multiple WAF Violations
Web App Attack
guillaume illien
2025-01-03 10:48:06
(3 weeks ago)
140.245.46.21 - - [03/Jan/2025:10:48:04 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT ... show more 140.245.46.21 - - [03/Jan/2025:10:48:04 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [03/Jan/2025:10:48:05 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [03/Jan/2025:10:48:05 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [03/Jan/2025:10:48:05 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [03/Jan/2025:10:48:05 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
140.245.46.21 - - [03/Jan/2025:10:4
... show less
Hacking
Brute-Force
Web App Attack
SSH
Anonymous
2025-01-03 09:51:06
(3 weeks ago)
140.245.46.21 detected and blocked by apache-noscript after 2 try
Hacking
Brute-Force
Bad Web Bot
Aplog
2025-01-03 05:30:07
(3 weeks ago)
[03/Jan/2025:05:27:30.157437 0000] Z3d1QuNgkHwJeWgvZvAzWgAAAJQ 140.245.46.21 57632 127.0.0.1 7080<b ... show more [03/Jan/2025:05:27:30.157437 0000] Z3d1QuNgkHwJeWgvZvAzWgAAAJQ 140.245.46.21 57632 127.0.0.1 7080
X-Real-IP: 140.245.46.21
Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 140.245.46.21] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/modsecurity.d/rules/comodo_free/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "plesk.astrovia.gg"] [uri "/api/.env"] [unique_id "Z3d1QuNgkHwJeWgvZvAzWgAAAJQ"] show less
Web App Attack
Anonymous
2025-01-03 04:34:23
(3 weeks ago)
Ports: 80,443; Direction: 0; Trigger: LF_MODSEC
Brute-Force
SSH
Anonymous
2025-01-03 02:25:21
(3 weeks ago)
access denied too many times (more than 12 attempts in 60 seconds)
...
Brute-Force
Web App Attack