teamsecure
2024-12-12 09:09:44
(1 month ago)
Banned for trying to access env
Web App Attack
TPI-Abuse
2024-12-12 07:47:29
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 12 02:47:22.241746 2024] [security2:error] [pid 2418810:tid 2418810] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:50900] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "divingmachines.com"] [uri "/.env"] [unique_id "Z1qVCuRZPXl8zwL2rTj6aQAAABE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-12 07:08:46
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 12 02:08:43.333079 2024] [security2:error] [pid 178042:tid 178042] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:19077] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "avmcyber.com"] [uri "/.env"] [unique_id "Z1qL-3C3JtfDbskaXKhbRAAAAA4"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-12 06:21:49
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 12 01:21:44.127262 2024] [security2:error] [pid 3227:tid 3227] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:23515] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rcto.us"] [uri "/.env"] [unique_id "Z1qA-BA3LsAwzIMjmSC3fAAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
openstrike.co.uk
2024-12-12 06:12:28
(1 month ago)
6 attacks on env grabbing URLs:
GET /.env.example HTTP/1.1
Hacking
TPI-Abuse
2024-12-12 04:43:55
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 23:43:52.658259 2024] [security2:error] [pid 9917:tid 9917] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:13567] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rotorservice.com"] [uri "/.env"] [unique_id "Z1pqCBA8Gshg0JgLSRTwSAAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-12 04:21:02
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 23:20:57.018208 2024] [security2:error] [pid 2741087:tid 2741087] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:49335] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "disneylawsuit.com"] [uri "/.env"] [unique_id "Z1pkqW4HAlOK9zU1cC-gqgAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
weblite
2024-12-12 03:50:31
(1 month ago)
WP_EXPLOIT_PROBE WP_MALWARE_PROBE
Hacking
Web App Attack
TPI-Abuse
2024-12-12 03:17:44
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 22:17:39.588462 2024] [security2:error] [pid 22434:tid 22439] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:8980] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boxwoodgarden.com"] [uri "/.env"] [unique_id "Z1pV00gW7RGsSy8NO8WE1AAAAUM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-12 02:22:33
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 21:22:26.941848 2024] [security2:error] [pid 2994:tid 2994] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:39373] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "netpet.batw.net"] [uri "/.env"] [unique_id "Z1pI4jSztRaxfhkvgS0z2gAAABI"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-11 18:06:09
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 13:06:04.282562 2024] [security2:error] [pid 1521801:tid 1521801] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:58722] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "louisvillecustomkitchens.com"] [uri "/.env"] [unique_id "Z1nUjArgXiB7qaeMQ4WPUQAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-12-11 10:58:14
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknow ... show more (mod_security) mod_security (id:210492) triggered by 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 11 05:58:11.562103 2024] [security2:error] [pid 29472:tid 29556] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf:59407] [client 2a00:23c5:cd06:e201:f846:f9f5:2acd:daaf] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "furball.co.uk"] [uri "/.env"] [unique_id "Z1lwQ-w8LMcObM07RmXSiQAAAI4"] show less
Brute-Force
Bad Web Bot
Web App Attack