ALPHANET
2024-11-14 03:20:56
(2 months ago)
web exploits
Hacking
Exploited Host
Web App Attack
kkeyser
2024-11-14 03:20:55
(2 months ago)
GET /.env HTTP/1.1
Web App Attack
diego
2024-11-14 03:18:56
(2 months ago)
Events: TCP SYN Discovery or Flooding, Seen 19 times in the last 10800 seconds
DDoS Attack
sid3windr
2024-11-14 03:17:34
(2 months ago)
GET /.env (Tarpitted for , wasted 0B)
Web App Attack
webbfabriken
2024-11-14 03:12:52
(2 months ago)
spam or other hacking activities reported by webbfabriken security servers
Attack reported by ... show more spam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbfabriken Security API - WFSecAPI show less
Web Spam
MPL
2024-11-14 03:05:40
(2 months ago)
tcp/443 (8 or more attempts)
Port Scan
MAGIC
2024-11-14 03:02:14
(2 months ago)
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
TPI-Abuse
2024-11-14 02:50:31
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 70.39.75.164 (keok1.agenciasego.com.br): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 70.39.75.164 (keok1.agenciasego.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 13 21:50:27.433006 2024] [security2:error] [pid 5668:tid 5668] [client 70.39.75.164:56344] [client 70.39.75.164] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.26"] [uri "/.env"] [unique_id "ZzVlc3waTxByrkArRx522QAAAAw"] show less
Brute-Force
Bad Web Bot
Web App Attack
myintarweb
2024-11-14 02:28:43
(2 months ago)
70.39.75.164 - - [14/Nov/2024:02:28:42 +0000] 443 "GET /.env HTTP/1.1" 404 29076 "-" "Mozilla/5.0 Ke ... show more 70.39.75.164 - - [14/Nov/2024:02:28:42 +0000] 443 "GET /.env HTTP/1.1" 404 29076 "-" "Mozilla/5.0 Keydrop"
... show less
Hacking
Bad Web Bot
Web App Attack
Linux-Tech
2024-11-14 02:23:14
(2 months ago)
70.39.75.164 - - [14/Nov/2024:03:23:12 +0100] "GET /.env HTTP/1.1" 400 154 "-" "Mozilla/5.0 Keydrop" ... show more 70.39.75.164 - - [14/Nov/2024:03:23:12 +0100] "GET /.env HTTP/1.1" 400 154 "-" "Mozilla/5.0 Keydrop" 70.39.75.164 - - [14/Nov/2024:03:23:12 +0100] "GET /.env HTTP/1.1" 400 248 "-" "Mozilla/5.0 Keydrop" show less
Port Scan
Bad Web Bot
Web App Attack
dinginess6354
2024-11-14 02:09:17
(2 months ago)
Unauthorized Access Attempt
Port Scan
Hacking
Web App Attack
TPI-Abuse
2024-11-14 02:08:10
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 70.39.75.164 (keok1.agenciasego.com.br): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 70.39.75.164 (keok1.agenciasego.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 13 21:08:03.511348 2024] [security2:error] [pid 3411290:tid 3411290] [client 70.39.75.164:33614] [client 70.39.75.164] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.218"] [uri "/.env"] [unique_id "ZzVbg6GNCrYieWxF49qo8wAAABU"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-14 02:07:54
(2 months ago)
fail2ban_mm apache-modsecurity [msg "Host header is a numeric IP address"] [uri "/.env"]
Web App Attack
ANTI SCANNER
2024-11-14 02:00:46
(2 months ago)
Scanner : /.env
Web Spam
TPI-Abuse
2024-11-14 01:41:37
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 70.39.75.164 (keok1.agenciasego.com.br): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 70.39.75.164 (keok1.agenciasego.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 13 20:41:31.282791 2024] [security2:error] [pid 23783:tid 23783] [client 70.39.75.164:38634] [client 70.39.75.164] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.61"] [uri "/.env"] [unique_id "ZzVVS-B9gXs44HPaHAgfzgAAAAg"] show less
Brute-Force
Bad Web Bot
Web App Attack