TPI-Abuse
2024-11-06 09:22:50
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 204.188.228.206 (dea26.com.monerrorsdebugged.co ... show more (mod_security) mod_security (id:210492) triggered by 204.188.228.206 (dea26.com.monerrorsdebugged.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 06 04:22:46.366768 2024] [security2:error] [pid 23398:tid 23437] [client 204.188.228.206:58804] [client 204.188.228.206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.178"] [uri "/.env"] [unique_id "Zys1ZvT4DAhKRgSuknXogQAAAIo"] show less
Brute-Force
Bad Web Bot
Web App Attack
Not Fake
2024-11-06 09:21:26
(2 months ago)
GET /.env HTTP/1.1 404 164942 "-" "Mozilla/5.0 Keydrop"
Web App Attack
BlueBird Web
2024-11-06 09:19:22
(2 months ago)
Web App Attack
mescribano
2024-11-06 09:10:01
(2 months ago)
Bad Web Bot
Web App Attack
sdos.es
2024-11-06 08:50:20
(2 months ago)
"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"
Web App Attack
FEWA
2024-11-06 08:31:09
(2 months ago)
Fail2Ban Ban Triggered
Hacking
Bad Web Bot
Web App Attack
MogBox
2024-11-06 08:29:09
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 204.188.228.206 (US/United States/dea26.com.mon ... show more (mod_security) mod_security (id:210492) triggered by 204.188.228.206 (US/United States/dea26.com.monerrorsdebugged.com): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Wed Nov 06 03:29:06.422541 2024] [security2:error] [pid 2976472:tid 2976524] [client 204.188.228.206:45830] [client 204.188.228.206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "67.225.186.60"] [uri "/.env"] [unique_id "Zyso0sUrcHHuxM0IOt5zZgAAAFQ"] show less
Hacking
Security_Whaller
2024-11-06 08:28:35
(2 months ago)
Malicious activity detected on Honeypot.
Hacking
Brute-Force
Web App Attack
TPI-Abuse
2024-11-06 08:03:54
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 204.188.228.206 (dea26.com.monerrorsdebugged.co ... show more (mod_security) mod_security (id:210492) triggered by 204.188.228.206 (dea26.com.monerrorsdebugged.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 06 03:03:49.697780 2024] [security2:error] [pid 3324:tid 3324] [client 204.188.228.206:44596] [client 204.188.228.206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.195"] [uri "/.env"] [unique_id "Zysi5eeLmVxCf2jKWqopTQAAAA8"] show less
Brute-Force
Bad Web Bot
Web App Attack
ASPAN
2024-11-06 08:01:32
(2 months ago)
Unsolicited connection attempt(s), port:443.
Port Scan
ASPAN
2024-11-06 08:01:32
(2 months ago)
Unsolicited connection attempt(s), port:443.
Port Scan
TPI-Abuse
2024-11-06 07:46:14
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 204.188.228.206 (dea26.com.monerrorsdebugged.co ... show more (mod_security) mod_security (id:210492) triggered by 204.188.228.206 (dea26.com.monerrorsdebugged.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 06 02:46:10.247142 2024] [security2:error] [pid 1940:tid 1940] [client 204.188.228.206:53348] [client 204.188.228.206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.119"] [uri "/.env"] [unique_id "ZysewvXJ-j-vH2rf6XFoRAAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
sid3windr
2024-11-06 07:35:54
(2 months ago)
GET /.env (Tarpitted for , wasted 0B)
Web App Attack
TPI-Abuse
2024-11-06 07:19:33
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 204.188.228.206 (dea26.com.monerrorsdebugged.co ... show more (mod_security) mod_security (id:210492) triggered by 204.188.228.206 (dea26.com.monerrorsdebugged.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 06 02:19:30.272429 2024] [security2:error] [pid 21150:tid 21150] [client 204.188.228.206:55748] [client 204.188.228.206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.247"] [uri "/.env"] [unique_id "ZysYgrTd-CeR2Qa1maCIPAAAAB4"] show less
Brute-Force
Bad Web Bot
Web App Attack
webbfabriken
2024-11-06 07:17:27
(2 months ago)
spam or other hacking activities reported by webbfabriken security servers
Attack reported by ... show more spam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbfabriken Security API - WFSecAPI show less
Web Spam