Anonymous
2024-08-11 19:48:03
(3 weeks ago)
$f2bV_matches
Brute-Force
axllent
2024-08-06 07:06:48
(1 month ago)
Scanning for exploits - /.env
Web App Attack
TPI-Abuse
2024-08-05 13:34:57
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.16.38.9 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 185.16.38.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 09:34:51.123030 2024] [security2:error] [pid 19585:tid 19585] [client 185.16.38.9:51733] [client 185.16.38.9] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sadisticserena.com"] [uri "/.env"] [unique_id "ZrDU-3_bEbSVffnKHaDYgwAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
S.O.B.A. Dev.
2024-08-05 12:21:08
(1 month ago)
Threat Blocked by BeeHive from (ASN:201814) (Network:MEVSPACE) (Host:soba.dev) (Method:GET) (Protoco ... show more Threat Blocked by BeeHive from (ASN:201814) (Network:MEVSPACE) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2024-08-05T12:21:08Z) show less
Web Spam
Brute-Force
Web App Attack
TPI-Abuse
2024-08-05 11:56:24
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.16.38.9 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 185.16.38.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 07:56:15.842278 2024] [security2:error] [pid 16877:tid 17005] [client 185.16.38.9:64326] [client 185.16.38.9] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "selecttech.org"] [uri "/.env"] [unique_id "ZrC93zmTmerhOfZ72gj2rgAAARE"] show less
Brute-Force
Bad Web Bot
Web App Attack
✨
2024-08-05 11:23:01
(1 month ago)
Domain : todoparatuboda.net
Rule : env
2024-08-05 11:22:16 ***hidden-privacy*** GET /.en ... show more Domain : todoparatuboda.net
Rule : env
2024-08-05 11:22:16 ***hidden-privacy*** GET /.env - 80 - 172.68.159.8 HTTP/1.1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 - todoparatuboda.net 200 0 0 10784 391 62 - 185.16.38.9 show less
Hacking
SQL Injection
Anonymous
2024-08-05 10:55:22
(1 month ago)
SuspiciousC Activity detected by FMBAD System 2024-08-05 13:55:21
Hacking
Bad Web Bot
Web App Attack
URAN Publishing Service
2024-08-05 09:43:02
(1 month ago)
185.16.38.9 - - [05/Aug/2024:12:42:58 +0300] "GET /.env HTTP/1.1" 404 279 "-" "Mozilla/5.0 (Macintos ... show more 185.16.38.9 - - [05/Aug/2024:12:42:58 +0300] "GET /.env HTTP/1.1" 404 279 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0"
185.16.38.9 - - [05/Aug/2024:12:43:01 +0300] "GET /.env HTTP/1.1" 404 279 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0"
... show less
Web App Attack
kumiko
2024-08-05 08:25:13
(1 month ago)
[2024-08-05 08:25:13] Probing for dotfiles
"GET /.env HTTP/1.1" 301
Bad Web Bot
Web App Attack
Ba-Yu
2024-08-05 08:03:09
(1 month ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
Anonymous
2024-08-05 06:40:22
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
dtorrer
2024-08-05 06:18:50
(1 month ago)
General vulnerability scan.
Port Scan
Swiptly
2024-08-05 05:07:58
(1 month ago)
Multiple critical ModSecurity events
...
Web Spam
Bad Web Bot
Anonymous
2024-08-05 04:58:02
(1 month ago)
Bot / scanning and/or hacking attempts: GET /.env HTTP/1.1
Hacking
Web App Attack
Hazzard
2024-08-05 04:08:01
(1 month ago)
(mod_security) mod_security triggered on hostname [redacted]): (CF_ENABLE)
SQL Injection