myintarweb
2024-11-11 18:02:17
(4 weeks ago)
152.42.235.252 - - [08/Nov/2024:12:38:15 +0000] 443 "GET /.env HTTP/1.1" 404 29078 "-" "Mozilla/5.0 ... show more 152.42.235.252 - - [08/Nov/2024:12:38:15 +0000] 443 "GET /.env HTTP/1.1" 404 29078 "-" "Mozilla/5.0 Keydrop"
... show less
Hacking
Bad Web Bot
Web App Attack
Sipo Chutão
2024-11-11 01:00:01
(4 weeks ago)
Web Hacking
Hacking
Sipo Chutão
2024-11-09 01:00:01
(1 month ago)
/.env
Hacking
TPI-Abuse
2024-11-08 15:55:21
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 152.42.235.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 152.42.235.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 08 10:55:17.130073 2024] [security2:error] [pid 7656:tid 7656] [client 152.42.235.252:47824] [client 152.42.235.252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.64"] [uri "/.env"] [unique_id "Zy40ZQCXZLh8tdy_FoqpvgAAACE"] show less
Brute-Force
Bad Web Bot
Web App Attack
lindi
2024-11-08 15:47:36
(1 month ago)
trying to access .env file
...
Hacking
Web App Attack
gumbysoft
2024-11-08 15:40:53
(1 month ago)
Too many HTTP Bad Requests
Bad Web Bot
sbk97 (https://sayor.online)
2024-11-08 15:37:12
(1 month ago)
GET / HTTP/1.0
Web App Attack
fstap
2024-11-08 15:34:00
(1 month ago)
"GET /.env HTTP/1.1"
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-08 15:20:36
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 152.42.235.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 152.42.235.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 08 10:20:31.396129 2024] [security2:error] [pid 21259:tid 21271] [client 152.42.235.252:42072] [client 152.42.235.252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.134"] [uri "/.env"] [unique_id "Zy4sP8JHYiHuGInvWqmsKAAAAAo"] show less
Brute-Force
Bad Web Bot
Web App Attack
MPL
2024-11-08 15:07:11
(1 month ago)
tcp/443 (6 or more attempts)
Port Scan
Anonymous
2024-11-08 15:06:35
(1 month ago)
Unsolicited multiport scan
Port Scan
Anonymous
2024-11-08 15:02:53
(1 month ago)
Nov 8 16:02:53 rendez-vous openvpn[1760]: 152.42.235.252:55534 Connection reset, restarting [0]
VPN IP
Port Scan
Web App Attack
TPI-Abuse
2024-11-08 14:58:43
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 152.42.235.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 152.42.235.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 08 09:58:38.634204 2024] [security2:error] [pid 1972:tid 1972] [client 152.42.235.252:54242] [client 152.42.235.252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.6"] [uri "/.env"] [unique_id "Zy4nHjGefi5V5qDgrp_ECgAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
gurnip
2024-11-08 14:47:26
(1 month ago)
Vulnerability probe of page /.env, not found on server.
Brute-Force
Web App Attack
TPI-Abuse
2024-11-08 14:38:34
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 152.42.235.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 152.42.235.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 08 09:38:28.731808 2024] [security2:error] [pid 29643:tid 29643] [client 152.42.235.252:52134] [client 152.42.235.252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.189"] [uri "/.env"] [unique_id "Zy4iZFAZbLaWJdv4EaQTIAAAAAw"] show less
Brute-Force
Bad Web Bot
Web App Attack