Requests to /core/.env

Remote Address

Threat Level

Method

Path

Query String

Headers

Body

Acceptable

Timestamp

Port

Request Types

Attack Types

Analyse Request

Other Requests by Actor

CSV Dump

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0

Parameter	Value

False

2024-10-01 11:53:12.435579

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.119 Safari/537.36 OPR/51.0.2830.26

Parameter	Value

False

2024-09-22 20:10:41.996993

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Linux; U; Android 2.3.5; en-us; PC36100 Build/GRJ90) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1

Parameter	Value

False

2024-09-15 08:39:49.359216

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Opera/7.0 (Windows NT 4.0; U) [en]

Parameter	Value

False

2024-08-09 09:53:38.216263

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	104.243.37.199
Cf-Ray	8afcec962d0db9c5-EWR
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept	/
Cf-Connecting-Ip	104.243.37.199
Cdn-Loop	cloudflare
Cf-Ipcountry	US

Parameter	Value

False

2024-08-08 04:57:10.065597

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.0.11) Gecko/2009061118 Fedora/3.0.11-1.fc9 Firefox/3.0.11

Parameter	Value

False

2024-08-07 09:54:07.610164

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Windows NT 5.1; rv:29.0) Gecko/20100101 Firefox/29.0

Parameter	Value

False

2024-08-06 13:26:56.096718

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/47.0.2526.80 Safari/537.36

Parameter	Value

False

2024-08-02 14:52:12.786491

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
Accept	/
User-Agent	Mozilla/5.0 (Linux; U; Android 4.0.4; en-au; GT-P7500 Build/IMM76D) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30

Parameter	Value

False

2024-08-02 00:23:30.640646

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
User-Agent	Go-http-client/1.1
Accept-Encoding	gzip

Parameter	Value

False

2024-07-28 22:52:59.634078

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	45.58.127.143
Cf-Ray	8a95317b5d4f09c6-MIA
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Connecting-Ip	45.58.127.143
Cdn-Loop	cloudflare
Cf-Ipcountry	US

Parameter	Value

False

2024-07-26 14:48:53.994659

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Content-Type	/
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	45.58.127.143
Cf-Ray	8a8bb13ce34e747a-MIA
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Ew-Via	15
Cdn-Loop	cloudflare; subreqs=1
Accept-Language	en-US,en;q=0.5
Accept	text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
User-Agent	Mozilla/5.0 (Linux; Android 11; SAMSUNG SM-G973U) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/14.2 Chrome/87.0.4280.141 Mobile Safari/537.36
Cf-Connecting-Ip	45.58.127.143
Cf-Ipcountry	US

Parameter	Value

False

2024-07-25 10:33:16.273112

GRAB
ATTACK

LFI

104.234.140.64

POST

/core/.env

Header	Value
Content-Type	application/x-www-form-urlencoded
Content-Length	17
Host	188.245.40.243
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate, zstd
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-18 00:19:06.356940

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate, zstd
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-18 00:19:03.937382

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	2a02:aa13:4680:6e80:8132:3976:b290:da69
Cf-Ray	8a31a6f1bf9f9e48-CDG
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
User-Agent	Go-http-client/1.1
Cf-Connecting-Ip	2a02:aa13:4680:6e80:8132:3976:b290:da69
Cdn-Loop	cloudflare
Cf-Ipcountry	CH

Parameter	Value

False

2024-07-14 12:52:49.459463

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-13 13:25:25.867658

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-11 05:32:06.889147

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	178.249.214.218
Cf-Ray	8a13e6db6d20369d-YYZ
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
User-Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36
Accept	/
Cf-Connecting-Ip	178.249.214.218
Cdn-Loop	cloudflare
Cf-Ipcountry	CA

Parameter	Value

False

2024-07-10 22:13:33.692585

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	178.249.214.218
Cf-Ray	8a13e6bdbcfdab4b-YYZ
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
User-Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36
Accept	/
Cf-Connecting-Ip	178.249.214.218
Cdn-Loop	cloudflare
Cf-Ipcountry	CA

Parameter	Value

False

2024-07-10 22:13:29.015399

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-09 21:52:37.316818

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-09 11:38:01.932521

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	188.245.40.243
User-Agent	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-07-07 20:44:22.634726

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Content-Type	/
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	102.101.198.89
Cf-Ray	89f45d2b61475e54-MAD
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Ew-Via	15
Cdn-Loop	cloudflare; subreqs=1
Accept-Language	en-US,en;q=0.5
Accept	text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
User-Agent	Mozilla/5.0 (Linux; Android 11; SAMSUNG SM-G973U) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/14.2 Chrome/87.0.4280.141 Mobile Safari/537.36
Cf-Connecting-Ip	102.101.198.89
Origin	https://evil.com
Cf-Ipcountry	MA

Parameter	Value

False

2024-07-07 02:21:56.202395

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Content-Type	/
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	102.101.198.89
Cf-Ray	89f45bb3e1a72fca-MAD
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Ew-Via	15
Cdn-Loop	cloudflare; subreqs=1
Accept-Language	en-US,en;q=0.5
Accept	text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
User-Agent	Mozilla/5.0 (Linux; Android 11; SAMSUNG SM-G973U) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/14.2 Chrome/87.0.4280.141 Mobile Safari/537.36
Cf-Connecting-Ip	102.101.198.89
Origin	https://evil.com
Cf-Ipcountry	MA

Parameter	Value

False

2024-07-07 02:20:56.107940

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Content-Type	/
Host	www.ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip
X-Forwarded-For	102.101.198.89
Cf-Ray	89f45831c77a6665-MAD
X-Forwarded-Proto	http
Cf-Visitor	{"scheme":"http"}
Cf-Ew-Via	15
Cdn-Loop	cloudflare; subreqs=1
Accept-Language	en-US,en;q=0.5
Accept	text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
User-Agent	Mozilla/5.0 (Linux; Android 11; SAMSUNG SM-G973U) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/14.2 Chrome/87.0.4280.141 Mobile Safari/537.36
Cf-Connecting-Ip	102.101.198.89
Origin	https://evil.com
Cf-Ipcountry	MA

Parameter	Value

False

2024-07-07 02:18:32.428702

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	ottodanp.dev
Connection	Keep-Alive
Accept-Encoding	gzip, br
X-Forwarded-For	179.43.149.114
Cf-Ray	89d2f4fabba8bb4d-FRA
X-Forwarded-Proto	https
Cf-Visitor	{"scheme":"https"}
User-Agent	Go-http-client/1.1
Cf-Connecting-Ip	179.43.149.114
Cdn-Loop	cloudflare
Cf-Ipcountry	CH

Parameter	Value

False

2024-07-03 01:03:38.584751

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (Macintosh; U; Mac OS X Mach-O; en-US; rv:2.0a) Gecko/20040614 Firefox/3.0.0
Accept-Charset	utf-8
Accept-Encoding	gzip
Connection	close

Parameter	Value

False

2024-05-25 12:44:39.210441

GRAB
ATTACK

LFI

104.234.140.64

POST

/core/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept-Encoding	*
Accept	/
Connection	keep-alive
Content-Length	20
Content-Type	application/x-www-form-urlencoded

Parameter	Value

False

2024-05-14 04:34:56.307863

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:105.0) Gecko/20100101 Firefox/105.0
Accept-Encoding	*
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-05-14 04:34:55.813940

GRAB
ATTACK

LFI

104.234.140.64

POST

/core/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:106.0) Gecko/20100101 Firefox/106.0
Accept-Encoding	*
Accept	/
Connection	keep-alive
Content-Length	20
Content-Type	application/x-www-form-urlencoded

Parameter	Value

False

2024-05-10 11:09:51.065313

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:106.0) Gecko/20100101 Firefox/106.0
Accept-Encoding	*
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-05-10 11:09:50.297057

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-05-07 07:10:16.722623

GRAB
ATTACK

LFI

104.234.140.64

GET

/core/.env

Header	Value
Host	167.172.53.140
User-Agent	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
Accept-Encoding	gzip, deflate
Accept	/
Connection	keep-alive

Parameter	Value

False

2024-05-07 07:10:03.178574

GRAB
ATTACK

LFI