TPI-Abuse
2024-08-06 10:45:50
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 06:45:44.896378 2024] [security2:error] [pid 23882:tid 23882] [client 185.112.83.96:64816] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.240"] [uri "/.env"] [unique_id "ZrH-2POEYUqnbUcuugl-QwAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-06 10:26:00
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 06:25:53.624116 2024] [security2:error] [pid 11709:tid 11709] [client 185.112.83.96:53201] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.90"] [uri "/.env"] [unique_id "ZrH6Mbv6fw0qFnETY3-FKQAAABQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-06 07:39:18
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 03:39:14.132873 2024] [security2:error] [pid 28220:tid 28220] [client 185.112.83.96:61587] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.163"] [uri "/.env"] [unique_id "ZrHTIlfo7MVCv2Sp-zyQUgAAABI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Bedios GmbH
2024-08-06 07:33:15
(1 month ago)
Login credentials theft attempt
Hacking
TPI-Abuse
2024-08-06 06:44:58
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 02:44:52.270631 2024] [security2:error] [pid 28687:tid 28687] [client 185.112.83.96:58624] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.196"] [uri "/.env"] [unique_id "ZrHGZAXR2-0V3EdpKRdmtAAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-06 06:02:57
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 02:02:50.907420 2024] [security2:error] [pid 2854:tid 2854] [client 185.112.83.96:55167] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.9"] [uri "/.env"] [unique_id "ZrG8iuMOEm-YVfNk9xMk7gAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
someone
2024-08-06 05:53:21
(1 month ago)
*:443 185.112.83.96 - - [06/Aug/2024:07:53:20 +0200] "GET /.env HTTP/1.1" 404 12923 "-" "python-requ ... show more *:443 185.112.83.96 - - [06/Aug/2024:07:53:20 +0200] "GET /.env HTTP/1.1" 404 12923 "-" "python-requests/2.32.3" show less
Web App Attack
TPI-Abuse
2024-08-06 05:06:21
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 01:06:12.344850 2024] [security2:error] [pid 12740:tid 12740] [client 185.112.83.96:51076] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.230"] [uri "/.env"] [unique_id "ZrGvRJLvM0Gqca-M_JR18wAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
gumbysoft
2024-08-06 04:49:40
(1 month ago)
Unauthorized web vulnerability scan (/.env, wordpress, etc.)
Web App Attack
london2038.com
2024-08-06 03:48:28
(1 month ago)
Malformed or malicious web request
185.112.83.96 - - [06/Aug/2024:05:48:24 +0200] "POST / HTTP ... show more Malformed or malicious web request
185.112.83.96 - - [06/Aug/2024:05:48:24 +0200] "POST / HTTP/1.1" 404 12413 "-" "python-requests/2.32.3" show less
Hacking
Web App Attack
TPI-Abuse
2024-08-06 02:53:14
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 22:53:10.907978 2024] [security2:error] [pid 15136:tid 15136] [client 185.112.83.96:56124] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.198"] [uri "/.env"] [unique_id "ZrGQFqhee5ouxIL_-3szKAAAACA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-06 02:32:43
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 22:32:36.351950 2024] [security2:error] [pid 2400935:tid 2400935] [client 185.112.83.96:52400] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.59"] [uri "/.env"] [unique_id "ZrGLRMCH_gGAB9I16km4dAAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
webbfabriken
2024-08-06 02:00:05
(1 month ago)
spam or other hacking activities reported by webbfabriken security servers
Attack reported by ... show more spam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbfabiken Security API - WFSecAPI show less
Web Spam
Anonymous
2024-08-06 01:24:32
(1 month ago)
185.112.83.96 - - [06/Aug/2024:09:24:31 +0800] "GET /.env HTTP/1.1" 404 5356 "-" "python-requests/2. ... show more 185.112.83.96 - - [06/Aug/2024:09:24:31 +0800] "GET /.env HTTP/1.1" 404 5356 "-" "python-requests/2.32.3"
... show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-05 22:31:20
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network) ... show more (mod_security) mod_security (id:210492) triggered by 185.112.83.96 (selective-scissors.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 18:31:14.665607 2024] [security2:error] [pid 14231:tid 14231] [client 185.112.83.96:50264] [client 185.112.83.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.235"] [uri "/.env"] [unique_id "ZrFSsuNp0YKPhD9v8KhAcAAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack