Requests to /backend/.env

Remote Address

Threat Level

Method

Path

Query String

Headers

Body

Acceptable

Timestamp

Port

Request Types

Attack Types

Analyse Request

Other Requests by Actor

CSV Dump

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Linux; Android 5.1.1; NEO X68-i Build/LMY49F; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/42.0.2311.137 Safari/537.36

Parameter	Value

False

2024-10-03 02:24:09.076505

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Windows NT 6.0; WOW64; rv:39.0) Gecko/20100101 Firefox/39.0

Parameter	Value

False

2024-10-02 22:09:52.815034

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Linux; Android 7.1.1; Moto E (4) Build/NCQ26.69-56) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.137 Mobile Safari/537.36

Parameter	Value

False

2024-10-01 11:53:09.484706

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	78.153.140.218
Cf-Ray	8cbc1d3cbecf5ba0-VIE
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
Accept	/
User-Agent	Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.5) Gecko/2008121718 Gentoo Firefox/3.0.5
Cf-Connecting-Ip	78.153.140.218
Cdn-Loop	cloudflare; loops=1
Cf-Ipcountry	GB

Parameter	Value

False

2024-10-01 11:29:18.865659

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	78.153.140.218
Cf-Ray	8cbc1d3cbb0b5b88-VIE
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
Accept	/
User-Agent	Mozilla/5.0 (Linux; U; Android 2.3.7; en-us; XT555C Build/V1.67D) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1
Cf-Connecting-Ip	78.153.140.218
Cdn-Loop	cloudflare; loops=1
Cf-Ipcountry	GB

Parameter	Value

False

2024-10-01 11:29:18.474453

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Linux; Android 4.4.2; VirtualBox Build/KVT49L) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/30.0.0.0 Safari/537.36

Parameter	Value

False

2024-09-22 20:10:39.599255

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	78.153.140.218
Cf-Ray	8c3ce3060cb3248b-KBP
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
Accept	/
User-Agent	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/534.54.16 (KHTML, like Gecko) Version/5.1.4 Safari/534.54.16
Cf-Connecting-Ip	78.153.140.218
Cdn-Loop	cloudflare; loops=1
Cf-Ipcountry	GB

Parameter	Value

False

2024-09-16 00:54:42.013234

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 OPR/45.0.2552.898

Parameter	Value

False

2024-09-15 08:39:47.049078

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	78.153.140.218
Cf-Ray	8b1515faeb35ca3d-KBP
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
Accept	/
User-Agent	Mozilla/5.0 (iPad; CPU OS 11_2 like Mac OS X) AppleWebKit/604.4.7 (KHTML, like Gecko) Version/11.0 Mobile/15C114 Safari/604.1
Cf-Connecting-Ip	78.153.140.218
Cdn-Loop	cloudflare
Cf-Ipcountry	GB

Parameter	Value

False

2024-08-11 03:19:44.876406

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	78.153.140.218
Cf-Ray	8b1515f8af352319-KBP
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
Accept	/
User-Agent	Mozilla/5.0 (PlayStation 4 2.57) AppleWebKit/537.73 (KHTML, like Gecko)
Cf-Connecting-Ip	78.153.140.218
Cdn-Loop	cloudflare
Cf-Ipcountry	GB

Parameter	Value

False

2024-08-11 03:19:44.733885

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	78.153.140.218
Cf-Ray	8b1515f59b2a24b6-KBP
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Accept	/
User-Agent	Mozilla/5.0 (Linux; U; Android 2.3.4; en-us; Nexus S Build/GRJ22) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1
Cf-Connecting-Ip	78.153.140.218
Cdn-Loop	cloudflare
Cf-Ipcountry	GB

Parameter	Value

False

2024-08-11 03:19:43.912685

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	78.153.140.218
Cf-Ray	8b1515f34e75ca2c-KBP
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Accept	/
User-Agent	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/44.0.2403.155 Safari/537.36
Cf-Connecting-Ip	78.153.140.218
Cdn-Loop	cloudflare
Cf-Ipcountry	GB

Parameter	Value

False

2024-08-11 03:19:43.403234

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.694.0 Safari/534.24

Parameter	Value

False

2024-08-10 06:15:33.825171

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	104.243.37.199
Cf-Ray	8afceafbed530cb5-EWR
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept	/
Cf-Connecting-Ip	104.243.37.199
Cdn-Loop	cloudflare
Cf-Ipcountry	US

Parameter	Value

False

2024-08-08 04:56:04.374097

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0

Parameter	Value

False

2024-08-07 22:12:35.325758

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_7) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.68 Safari/534.24
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-31 03:51:26.994048

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (iPad; CPU iPhone OS 9.3.1 like Mac OS X; en_US) AppleWebKit/1 (KHTML, like Gecko) Mobile/1 Safari/1 iPhone/1 SellOnEtsy/2.33 rv:23300.43.0
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-29 10:53:57.741570

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
User-Agent	Go-http-client/1.1
Accept-Encoding	gzip

Parameter	Value

False

2024-07-28 22:53:02.890966

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (Linux; Android 6.0.1; SM-G550FY Build/MMB29K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Mobile Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-28 17:01:21.916770

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	45.58.127.143
Cf-Ray	8a9531719f11dac1-MIA
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Connecting-Ip	45.58.127.143
Cdn-Loop	cloudflare
Cf-Ipcountry	US

Parameter	Value

False

2024-07-26 14:48:52.433740

GRAB
ATTACK

LFI

102.101.198.89

POST

/backend/.env

Header	Value
Content-Type	application/x-www-form-urlencoded
Content-Length	17
Host	188.245.40.243
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate, zstd
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-18 00:20:15.442459

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate, zstd
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-18 00:20:15.069587

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	2a02:aa13:4680:6e80:8132:3976:b290:da69
Cf-Ray	8a31a6f54a9a9e48-CDG
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
User-Agent	Go-http-client/1.1
Cf-Connecting-Ip	2a02:aa13:4680:6e80:8132:3976:b290:da69
Cdn-Loop	cloudflare
Cf-Ipcountry	CH

Parameter	Value

False

2024-07-14 12:52:50.033245

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-13 13:25:25.360262

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	178.249.214.218
Cf-Ray	8a13e4494eeeabca-YYZ
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
User-Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36
Accept	/
Cf-Connecting-Ip	178.249.214.218
Cdn-Loop	cloudflare
Cf-Ipcountry	CA

Parameter	Value

False

2024-07-10 22:11:47.768716

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	178.249.214.218
Cf-Ray	8a13e43f0a0dabe2-YYZ
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
User-Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36
Accept	/
Cf-Connecting-Ip	178.249.214.218
Cdn-Loop	cloudflare
Cf-Ipcountry	CA

Parameter	Value

False

2024-07-10 22:11:46.571219

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-09 11:38:19.486391

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-07 20:44:20.356994

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Content-Type	/
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	102.101.198.89
Cf-Ray	89f45d265246215c-MAD
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Ew-Via	15
Cdn-Loop	cloudflare; subreqs=1
Accept-Language	en-US,en;q=0.5
Accept	text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
User-Agent	Mozilla/5.0 (Linux; Android 11; SAMSUNG SM-G973U) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/14.2 Chrome/87.0.4280.141 Mobile Safari/537.36
Cf-Connecting-Ip	102.101.198.89
Origin	https://evil.com
Cf-Ipcountry	MA

Parameter	Value

False

2024-07-07 02:21:55.401905

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Content-Type	/
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	102.101.198.89
Cf-Ray	89f45badc1442fc9-MAD
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Ew-Via	15
Cdn-Loop	cloudflare; subreqs=1
Accept-Language	en-US,en;q=0.5
Accept	text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
User-Agent	Mozilla/5.0 (Linux; Android 11; SAMSUNG SM-G973U) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/14.2 Chrome/87.0.4280.141 Mobile Safari/537.36
Cf-Connecting-Ip	102.101.198.89
Origin	https://evil.com
Cf-Ipcountry	MA

Parameter	Value

False

2024-07-07 02:20:55.122178

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Content-Type	/
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	102.101.198.89
Cf-Ray	89f4582b42a860cc-MAD
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Ew-Via	15
Cdn-Loop	cloudflare; subreqs=1
Accept-Language	en-US,en;q=0.5
Accept	text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
User-Agent	Mozilla/5.0 (Linux; Android 11; SAMSUNG SM-G973U) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/14.2 Chrome/87.0.4280.141 Mobile Safari/537.36
Cf-Connecting-Ip	102.101.198.89
Origin	https://evil.com
Cf-Ipcountry	MA

Parameter	Value

False

2024-07-07 02:18:31.377571

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.0.0 Trailer/92.3.3357.27
Accept-Encoding	gzip, deflate, br
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-05-28 12:10:50.904131

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (Linux; Android 11; SM-A505FN) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.41 Mobile Safari/537.36
Accept-Charset	utf-8
Accept-Encoding	gzip
Connection	close

Parameter	Value

False

2024-05-25 12:44:39.110906

GRAB
ATTACK

LFI

102.101.198.89

GET

/backend/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-05-07 07:10:13.656753

GRAB
ATTACK

LFI