axllent
|
|
Scanning for exploits - /.env
|
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: ... show more(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 05 05:16:15.766122 2024] [security2:error] [pid 23160:tid 23160] [client 64.95.11.36:40838] [client 64.95.11.36] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "onlinelinks.qu1ck.com"] [uri "/.env"] [unique_id "Zynwb65_sEtTPwDIakdLUQAAAAA"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Anonymous
|
|
Restricted File Access Requests
|
Hacking
Brute-Force
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: ... show more(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 05 04:51:00.898483 2024] [security2:error] [pid 27526:tid 27526] [client 64.95.11.36:54724] [client 64.95.11.36] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "okermans.kidswow.com"] [uri "/.env"] [unique_id "ZynqhK1MJzh3Qdxtaag9kQAAABI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
etu brutus
|
|
64.95.11.36 Blocked by [Attack Vector List]
...
|
Hacking
Brute-Force
Exploited Host
|
|
cmbplf
|
|
120 requests to *.env
|
Brute-Force
Bad Web Bot
|
|
Smel
|
|
HTTP/80/443/8080 Unauthorized Probe, Hack -
|
Hacking
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: ... show more(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 05 04:35:57.064674 2024] [security2:error] [pid 15628:tid 15628] [client 64.95.11.36:60898] [client 64.95.11.36] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "odinathletes.com"] [uri "/.env"] [unique_id "Zynm_VBrx18cg-2FavGg8gAAABQ"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
FeG Deutschland
|
|
Looking for CMS/PHP/SQL vulnerablilities - 13
|
Exploited Host
Web App Attack
|
|
aks4226
|
|
Attacking common web applications. (n01)
|
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: ... show more(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 05 04:19:49.040056 2024] [security2:error] [pid 12453:tid 12453] [client 64.95.11.36:48874] [client 64.95.11.36] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nyctrademarklawyercom.karenbernsteinlaw.net"] [uri "/.env"] [unique_id "ZynjNY043fTeYKcDmmCnrgAAAAk"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Epimetheus
|
|
Unauthorized access attempts:
From:
64.95.11.36
Method:
HTTP ... show moreUnauthorized access attempts:
From:
64.95.11.36
Method:
HTTPS GET
URI Path:
/.env
UA:
"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" show less
|
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: ... show more(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 05 04:01:10.823360 2024] [security2:error] [pid 24163:tid 24163] [client 64.95.11.36:46402] [client 64.95.11.36] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "now-app.space"] [uri "/.env"] [unique_id "Zyne1v2ChdTcLf8FgKcPmwAAABQ"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: ... show more(mod_security) mod_security (id:210492) triggered by 64.95.11.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 05 03:46:05.078179 2024] [security2:error] [pid 26168:tid 26168] [client 64.95.11.36:49450] [client 64.95.11.36] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "norbertesser.com"] [uri "/.env"] [unique_id "ZynbTaBhFyi1H3A0DD-8sQAAABY"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
moebius
|
|
GET /.env HTTP/1.1" 404 19 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML
|
Web App Attack
|
|