TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.comput ... show more(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 21 08:48:05.137616 2024] [security2:error] [pid 20529:tid 20529] [client 3.21.228.109:64294] [client 3.21.228.109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "camerongunsmith.com"] [uri "/.env"] [unique_id "ZxZNhZNM6exs2KPbmfUtJgAAABE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
teamsecure
|
|
Banned for trying to access env
|
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.comput ... show more(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 18 05:11:55.098474 2024] [security2:error] [pid 18284:tid 18284] [client 3.21.228.109:53794] [client 3.21.228.109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yanlidesign.com"] [uri "/.env"] [unique_id "ZxImW1mueAyPb2Ax-8lbXAAAAAg"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
KitsuneTech
|
|
3.21.228.109 - - [18/Oct/2024:02:12:51 -0500] "GET /.env HTTP/1.1" 301 236 "-" "python-requests/2.32 ... show more3.21.228.109 - - [18/Oct/2024:02:12:51 -0500] "GET /.env HTTP/1.1" 301 236 "-" "python-requests/2.32.3"
... show less
|
Hacking
|
|
Hydra-Shield.fr
|
|
Directory Traversal on: /.env
|
Web App Attack
|
|
mnsf
|
|
Too many Status 40X (12)
|
Brute-Force
Web App Attack
|
|
juutis
|
|
Multiple WAF abuses - IP blocked
|
Hacking
Brute-Force
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.comput ... show more(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 17 08:15:24.215187 2024] [security2:error] [pid 19764:tid 19764] [client 3.21.228.109:56747] [client 3.21.228.109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drschneedle.org"] [uri "/.env"] [unique_id "ZxD_3IURrshO9ZG1t6izFwAAAAI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.comput ... show more(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 16 14:42:36.591571 2024] [security2:error] [pid 2674:tid 2686] [client 3.21.228.109:53387] [client 3.21.228.109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ammisr.com"] [uri "/.env"] [unique_id "ZxAJHAdjTe1OVSNSn0vZoAAAAQI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.comput ... show more(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 16 09:57:45.408588 2024] [security2:error] [pid 29259:tid 29259] [client 3.21.228.109:54435] [client 3.21.228.109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "psicotanato.com"] [uri "/.env"] [unique_id "Zw_GWcGYs4f5zOCtsbzEhQAAAAM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.comput ... show more(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 16 00:25:20.768913 2024] [security2:error] [pid 15084:tid 15084] [client 3.21.228.109:62461] [client 3.21.228.109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bigpanda.expert"] [uri "/.env"] [unique_id "Zw9AMBPwHIs7i--f2q7fXgAAAAI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.comput ... show more(mod_security) mod_security (id:210492) triggered by 3.21.228.109 (ec2-3-21-228-109.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 14 05:53:17.079718 2024] [security2:error] [pid 11168:tid 11168] [client 3.21.228.109:62178] [client 3.21.228.109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sydat.se"] [uri "/.env"] [unique_id "ZwzqDb5e6sOcDWbAOIR-tAAAAAU"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Anonymous
|
|
Bot / scanning and/or hacking attempts: GET /.env HTTP/1.1
|
Hacking
Web App Attack
|
|
teamsecure
|
|
Banned for trying to access env
|
Web App Attack
|
|
Anonymous
|
|
|
Web App Attack
|
|