Anonymous
2025-01-29 03:59:02
(1 week ago)
(mod_security) mod_security triggered on hostname [redacted] 94.228.169.182 (AT/Austria/coherent-sug ... show more (mod_security) mod_security triggered on hostname [redacted] 94.228.169.182 (AT/Austria/coherent-sugar.aeza.network) show less
SQL Injection
TPI-Abuse
2025-01-29 03:14:08
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 ... show more (mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 28 22:14:04.569356 2025] [security2:error] [pid 13892:tid 13914] [client 94.228.169.182:61019] [client 94.228.169.182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tieco.salvoni.com"] [uri "/.env"] [unique_id "Z5mc_HT02mcztGCbz7djZAAAARQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
Ba-Yu
2025-01-29 01:57:13
(1 week ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
TPI-Abuse
2025-01-28 21:39:15
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 ... show more (mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 28 16:39:08.287787 2025] [security2:error] [pid 7863:tid 7863] [client 94.228.169.182:53187] [client 94.228.169.182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "peacecampus.org"] [uri "/.env"] [unique_id "Z5lOfHUJeqymWAVlGmNx8wAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
lindi
2025-01-28 21:11:54
(1 week ago)
trying to access .env file
...
Hacking
Web App Attack
✨
2025-01-28 21:03:02
(1 week ago)
Domain : todoparatuboda.com
Rule : env
2025-01-28 21:01:19 152.53.103.155 GET /.env - 44 ... show more Domain : todoparatuboda.com
Rule : env
2025-01-28 21:01:19 152.53.103.155 GET /.env - 443 - 172.69.150.103 HTTP/2 python-requests/2.26.0 - todoparatuboda.com 200 0 0 5738 337 1164 - 94.228.169.182 show less
Hacking
SQL Injection
TPI-Abuse
2025-01-28 19:25:20
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 ... show more (mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 28 14:25:16.553065 2025] [security2:error] [pid 462578:tid 462578] [client 94.228.169.182:57611] [client 94.228.169.182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kporterdesign.com"] [uri "/.env"] [unique_id "Z5kvHHSTD4nxPif_ejLb_wAAABE"] show less
Brute-Force
Bad Web Bot
Web App Attack
teamsecure
2025-01-28 18:42:44
(1 week ago)
Banned for trying to access env
Web App Attack
Anonymous
2025-01-28 17:19:35
(1 week ago)
Probing to gain illegal access
Web App Attack
TPI-Abuse
2025-01-28 17:18:05
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 ... show more (mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 28 12:17:59.346735 2025] [security2:error] [pid 2735178:tid 2735178] [client 94.228.169.182:58071] [client 94.228.169.182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fashionmenswear.com"] [uri "/.env"] [unique_id "Z5kRR1T7-P05vdSks8C6FwAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-28 14:50:57
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 ... show more (mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 28 09:50:52.361387 2025] [security2:error] [pid 25943:tid 25943] [client 94.228.169.182:58399] [client 94.228.169.182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "charmainecruz.com"] [uri "/.env"] [unique_id "Z5juzHuwZOLaqxAie3rVRQAAAAg"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2025-01-28 14:10:13
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 ... show more (mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 28 09:10:07.061148 2025] [security2:error] [pid 8028:tid 8028] [client 94.228.169.182:56667] [client 94.228.169.182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.voodooshop.com"] [uri "/.env"] [unique_id "Z5jlP-gKFwji04zH45TR5gAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
myagent.site
2025-01-28 13:48:25
(1 week ago)
Blocking for trying to access an exploit file: /.env
Hacking
TPI-Abuse
2025-01-28 12:10:48
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 ... show more (mod_security) mod_security (id:210492) triggered by 94.228.169.182 (coherent-sugar.aeza.network): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 28 07:10:45.035883 2025] [security2:error] [pid 586:tid 586] [client 94.228.169.182:62990] [client 94.228.169.182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.6"] [uri "/.env"] [unique_id "Z5jJRaaNfBuNXb7dCk5magAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
TZNOC
2025-01-18 03:05:25
(3 weeks ago)
Brute Force Attack on a Web Resources (probe) #5
DDoS Attack
Web Spam
Brute-Force
Web App Attack