TPI-Abuse
2024-09-30 08:35:19
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 30 04:35:11.990125 2024] [security2:error] [pid 21668:tid 21668] [client 2a02:7b40:c3b5:f4b8::1:56180] [client 2a02:7b40:c3b5:f4b8::1] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sub-sea9.com"] [uri "/.env"] [unique_id "Zvpiv4tIXKsXn869t9CE8QAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-30 07:20:21
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 30 03:20:16.488684 2024] [security2:error] [pid 7729:tid 7729] [client 2a02:7b40:c3b5:f4b8::1:53149] [client 2a02:7b40:c3b5:f4b8::1] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "steinmetzjewelers.com"] [uri "/.env"] [unique_id "ZvpRMN5KThmHoA-0yR8_AwAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-29 17:15:58
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 29 13:15:53.151868 2024] [security2:error] [pid 11982:tid 11982] [client 2a02:7b40:c3b5:f4b8::1:52266] [client 2a02:7b40:c3b5:f4b8::1] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "texascash.com"] [uri "/.env"] [unique_id "ZvmLSbbs03nb4m7VtYS4gwAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-29 15:05:28
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 29 11:05:20.264883 2024] [security2:error] [pid 3405:tid 3405] [client 2a02:7b40:c3b5:f4b8::1:55011] [client 2a02:7b40:c3b5:f4b8::1] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teknna.com"] [uri "/.env"] [unique_id "ZvlssAy5Fzyv_lgfK5BTBAAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-29 14:05:57
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 29 10:05:52.523815 2024] [security2:error] [pid 28069:tid 28069] [client 2a02:7b40:c3b5:f4b8::1:62104] [client 2a02:7b40:c3b5:f4b8::1] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "technesa.com"] [uri "/.env"] [unique_id "ZvlewJxG7rdhR_RxbuTBFAAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-29 13:40:28
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 29 09:40:25.570912 2024] [security2:error] [pid 3498:tid 3498] [client 2a02:7b40:c3b5:f4b8::1:49252] [client 2a02:7b40:c3b5:f4b8::1] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teamwakim.com"] [uri "/.env"] [unique_id "ZvlYyYSr3bGHMBLpGPxBsQAAABQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-29 13:40:28
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 29 09:40:24.949515 2024] [security2:error] [pid 3086:tid 3086] [client 2a02:7b40:c3b5:f4b8::1:49201] [client 2a02:7b40:c3b5:f4b8::1] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teamwakimphotography.com"] [uri "/.env"] [unique_id "ZvlYyIz7kKbGVgyEA7LRnQAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
myagent.site
2024-09-29 13:23:49
(1 week ago)
Blocking for trying to access an exploit file: /.env
Hacking
teamsecure
2024-09-29 13:22:09
(1 week ago)
Banned for trying to access env
Web App Attack
TPI-Abuse
2024-09-29 13:18:59
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:7b40:c3b5:f4b8::1 (4s84.w.time4vps.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 29 09:18:54.912769 2024] [security2:error] [pid 11623:tid 11623] [client 2a02:7b40:c3b5:f4b8::1:64623] [client 2a02:7b40:c3b5:f4b8::1] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "team-eridani.com"] [uri "/.env"] [unique_id "ZvlTvm70I3vGKGEqD71PoAAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
teamsecure
2024-09-27 19:24:20
(1 week ago)
Banned for trying to access env
Web App Attack
conseilgouz
2024-09-13 15:01:56
(3 weeks ago)
lae-17 : Block hidden directories=>/.env(/)
Hacking
someone
2024-09-13 14:02:26
(3 weeks ago)
*:443 2a02:7b40:c3b5:f4b8::1 - - [13/Sep/2024:16:02:24 +0200] "GET /.env HTTP/1.1" 404 12927 "-" "py ... show more *:443 2a02:7b40:c3b5:f4b8::1 - - [13/Sep/2024:16:02:24 +0200] "GET /.env HTTP/1.1" 404 12927 "-" "python-requests/2.32.3" show less
Web App Attack
XICTRON
2024-09-13 10:25:03
(4 weeks ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
teamsecure
2024-09-13 09:03:03
(4 weeks ago)
Banned for trying to access env
Web App Attack