MogBox
2024-08-15 07:05:03
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 51.222.98.97 (CA/Canada/ip97.ip-51-222-98.net): ... show more (mod_security) mod_security (id:210492) triggered by 51.222.98.97 (CA/Canada/ip97.ip-51-222-98.net): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Thu Aug 15 03:04:59.013219 2024] [security2:error] [pid 1605005:tid 1605052] [client 51.222.98.97:57461] [client 51.222.98.97] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "67.225.186.60"] [uri "/.env"] [unique_id "Zr2om66Lutl382G5byp78wAAABI"] show less
Hacking
webbfabriken
2024-08-15 03:38:29
(3 weeks ago)
spam or other hacking activities reported by webbfabriken security servers
Attack reported by ... show more spam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbfabiken Security API - WFSecAPI show less
Web Spam
Mr-Money
2024-08-14 19:40:46
(3 weeks ago)
51.222.98.97 - - [14/Aug/2024:21:40:45 +0200] "GET /.env HTTP/1.1" 404 492 "-" "python-requests/2.26 ... show more 51.222.98.97 - - [14/Aug/2024:21:40:45 +0200] "GET /.env HTTP/1.1" 404 492 "-" "python-requests/2.26.0"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
Mr-Money
2024-08-14 17:19:05
(3 weeks ago)
51.222.98.97 - - [14/Aug/2024:19:19:03 +0200] "GET /.env HTTP/1.1" 404 462 "-" "python-requests/2.26 ... show more 51.222.98.97 - - [14/Aug/2024:19:19:03 +0200] "GET /.env HTTP/1.1" 404 462 "-" "python-requests/2.26.0"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
CrystalMaker
2024-08-14 17:18:39
(3 weeks ago)
Vulnerability scan - GET /.env
Hacking
Anonymous
2024-08-14 14:28:58
(3 weeks ago)
Probe for vulnerabilities. Path attempted: /.env
Web App Attack
WebpodsLLC
2024-08-14 13:36:47
(3 weeks ago)
(mod_security) mod_security (id:949110) triggered by 51.222.98.97 (ip97.ip-51-222-98.net): 3 in the ... show more (mod_security) mod_security (id:949110) triggered by 51.222.98.97 (ip97.ip-51-222-98.net): 3 in the last 3600 secs; Ports: *; Direction: 0; Trigger: LF_MODSEC; show less
Port Scan
Brute-Force
Web App Attack
MogBox
2024-08-14 09:13:27
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 51.222.98.97 (CA/Canada/ip97.ip-51-222-98.net): ... show more (mod_security) mod_security (id:210492) triggered by 51.222.98.97 (CA/Canada/ip97.ip-51-222-98.net): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Wed Aug 14 05:13:23.085306 2024] [security2:error] [pid 1454321:tid 1454362] [client 51.222.98.97:56156] [client 51.222.98.97] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "67.225.186.60"] [uri "/.env"] [unique_id "Zrx1My08Qds2KM0eiL8hLgAAAAo"] show less
Hacking
whitehoodie
2024-08-14 06:07:31
(3 weeks ago)
AUTOMATED REPORT: Tried to access .env file
Hacking
Bad Web Bot
Web App Attack
Mr-Money
2024-08-14 05:11:27
(3 weeks ago)
51.222.98.97 - - [14/Aug/2024:07:11:26 +0200] "GET /.env HTTP/1.1" 404 492 "-" "python-requests/2.26 ... show more 51.222.98.97 - - [14/Aug/2024:07:11:26 +0200] "GET /.env HTTP/1.1" 404 492 "-" "python-requests/2.26.0"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
Anonymous
2024-08-14 04:16:02
(3 weeks ago)
Fuzzing/Looking for credentials files.
Brute-Force
Web App Attack
TPI-Abuse
2024-08-14 04:04:09
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 51.222.98.97 (ip97.ip-51-222-98.net): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 51.222.98.97 (ip97.ip-51-222-98.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 14 00:04:02.512412 2024] [security2:error] [pid 31777:tid 31777] [client 51.222.98.97:55022] [client 51.222.98.97] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.9"] [uri "/.env"] [unique_id "ZrwsspO4oO4Xtd3ntY6R9gAAAA4"] show less
Brute-Force
Bad Web Bot
Web App Attack
Mr-Money
2024-08-13 20:28:14
(3 weeks ago)
51.222.98.97 - - [13/Aug/2024:22:28:13 +0200] "GET /.env HTTP/1.1" 404 462 "-" "python-requests/2.26 ... show more 51.222.98.97 - - [13/Aug/2024:22:28:13 +0200] "GET /.env HTTP/1.1" 404 462 "-" "python-requests/2.26.0"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
Mr-Money
2024-08-13 19:54:02
(3 weeks ago)
51.222.98.97 - - [13/Aug/2024:21:54:01 +0200] "GET /.env HTTP/1.1" 404 492 "-" "python-requests/2.26 ... show more 51.222.98.97 - - [13/Aug/2024:21:54:01 +0200] "GET /.env HTTP/1.1" 404 492 "-" "python-requests/2.26.0"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
iNetWorker
2024-08-13 19:47:00
(3 weeks ago)
trolling for resource vulnerabilities
Web App Attack