Cynar & Cinny
2024-11-15 16:12:37
(3 weeks ago)
httpd_block_log
Bad Web Bot
TPI-Abuse
2024-11-15 06:24:02
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 15 01:23:57.252800 2024] [security2:error] [pid 25659:tid 25659] [client 165.227.62.131:51092] [client 165.227.62.131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.21"] [uri "/.env"] [unique_id "Zzbo_f7fOwMnoJGps7jAWgAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
lindi
2024-11-15 06:17:07
(3 weeks ago)
trying to access .env file
...
Hacking
Web App Attack
gumbysoft
2024-11-15 06:11:38
(3 weeks ago)
Too many HTTP Bad Requests
Bad Web Bot
sbk97 (https://sayor.online)
2024-11-15 06:08:41
(3 weeks ago)
GET / HTTP/1.0
Web App Attack
fstap
2024-11-15 06:06:05
(3 weeks ago)
"GET /.env HTTP/1.1"
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-15 05:54:53
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 15 00:54:49.808539 2024] [security2:error] [pid 26833:tid 26853] [client 165.227.62.131:53704] [client 165.227.62.131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.134"] [uri "/.env"] [unique_id "ZzbiKbUl10PHURguSf2c1wAAANI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-15 05:43:43
(3 weeks ago)
Unsolicited multiport scan
Port Scan
Anonymous
2024-11-15 05:40:32
(3 weeks ago)
Nov 15 06:40:32 rendez-vous openvpn[1795]: 165.227.62.131:38838 Connection reset, restarting [0]
VPN IP
Port Scan
Web App Attack
TPI-Abuse
2024-11-15 05:37:16
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 15 00:37:10.691632 2024] [security2:error] [pid 25227:tid 25227] [client 165.227.62.131:48532] [client 165.227.62.131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.6"] [uri "/.env"] [unique_id "ZzbeBhgkCSEXvLL-Uw7dtwAAAAw"] show less
Brute-Force
Bad Web Bot
Web App Attack
gurnip
2024-11-15 05:28:07
(3 weeks ago)
Vulnerability probe of page /.env, not found on server.
Brute-Force
Web App Attack
TPI-Abuse
2024-11-15 05:20:51
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 15 00:20:45.996065 2024] [security2:error] [pid 769:tid 769] [client 165.227.62.131:40072] [client 165.227.62.131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.189"] [uri "/.env"] [unique_id "ZzbaLdzsNuDKMSYVLZ2g5AAAACA"] show less
Brute-Force
Bad Web Bot
Web App Attack
sdos.es
2024-11-15 05:20:41
(3 weeks ago)
"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"
Web App Attack
Anonymous
2024-11-15 05:11:34
(3 weeks ago)
Bot / scanning and/or hacking attempts: GET /.env HTTP/1.1
Hacking
Web App Attack
TPI-Abuse
2024-11-15 05:05:38
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 165.227.62.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 15 00:05:34.350658 2024] [security2:error] [pid 30248:tid 30248] [client 165.227.62.131:51040] [client 165.227.62.131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.220"] [uri "/.env"] [unique_id "ZzbWnpVLQCdJHQTDyo1Y8QAAABs"] show less
Brute-Force
Bad Web Bot
Web App Attack