Anonymous
2026-06-28 15:25:42
(1 day ago)
$f2bV_matches
Brute-Force
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-06-28 05:20:11
(1 day ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 05:18:59
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 104.193.135.105 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 104.193.135.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 01:18:52.566998 2026] [security2:error] [pid 24579:tid 24579] [client 104.193.135.105:38898] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||192.64.150.225|F|2"] [data ".env.old"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "192.64.150.225"] [uri "/.env.old"] [unique_id "akCuvD9XbKbnKKF1STJtFQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 02:28:19
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 104.193.135.105 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.193.135.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 22:28:11.127100 2026] [security2:error] [pid 30766:tid 30766] [client 104.193.135.105:35648] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.119"] [uri "/.env.dev"] [unique_id "akCGu9brx3o54g9EMY8uHAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ท
Halux
2026-06-28 02:13:45
(2 days ago)
104.193.135.105 Probing protected path or service
Web App Attack
๐ฉ๐ช
sojan
2026-06-28 02:03:00
(2 days ago)
104.193.135.105 - - [28/Jun/2026:04:02:58 +0200] "GET /app/.env HTTP/1.1" 404 1678 "-" "Mozilla/5.0 ...
show more
104.193.135.105 - - [28/Jun/2026:04:02:58 +0200] "GET /app/.env HTTP/1.1" 404 1678 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47"
104.193.135.105 - - [28/Jun/2026:04:02:58 +0200] "GET /.env.production HTTP/1.1" 404 1676 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47"
104.193.135.105 - - [28/Jun/2026:04:02:58 +0200] "GET /.env.local HTTP/1.1" 404 1677 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47"
...
show less
Web App Attack
๐ซ๐ท
LRNP
2026-06-28 00:21:00
(2 days ago)
_:443 104.193.135.105 - - [28/Jun/2026:00:20:59 +0000] "GET /.env.dev HTTP/1.1" 404 118 "-" "Mozilla ...
show more
_:443 104.193.135.105 - - [28/Jun/2026:00:20:59 +0000] "GET /.env.dev HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15"
_:443 104.193.135.105 - - [28/Jun/2026:00:20:59 +0000] "GET /laravel/.env HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15"
_:443 104.193.135.105 - - [28/Jun/2026:00:20:59 +0000] "GET /.env HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15"
_:443 104.193.135.105 - - [28/Jun/2026:00:20:59 +0000] "GET /app/.env HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15"
_:443 104.193.135.105 - - [28/Jun/2026:00:20:59 +0000] "GET /.env.production HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Appl
...
show less
Bad Web Bot
Web App Attack
๐ฌ๐ง
martenmark
2026-06-04 03:30:26
(3 weeks ago)
104.193.135.105 - - [04/Jun/2026:03:30:26 +0000] "GET /.env.dev HTTP/1.1" 403 669 "-" "Mozilla/5.0 ( ...
show more
104.193.135.105 - - [04/Jun/2026:03:30:26 +0000] "GET /.env.dev HTTP/1.1" 403 669 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15"
...
show less
Web App Attack
Anonymous
2026-05-02 10:00:04
(1 month ago)
| Multiple SQL injection attempts from same source ip.(multiple servers)
Web App Attack
Hacking
SQL Injection
๐จ๐ณ
pengpeng
2026-05-01 02:33:03
(1 month ago)
monitor: on VM-0-7-ubuntu | port: 31816 | ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ...
show more
monitor: on VM-0-7-ubuntu | port: 31816 | ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐ท๐บ
ago.su
2025-07-19 09:16:23
(11 months ago)
F2B blocked nginx activity control ddos v1 [otd]
DDoS Attack
Anonymous
2025-06-07 11:30:53
(1 year ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
Anonymous
2025-06-05 12:50:34
(1 year ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐ซ๐ท
bazter.pro
2025-04-28 01:00:30
(1 year ago)
Banned by firewall: Suspicious User-Agent: -; Sensitive URI accessed: \x12[\xF2\x1BT\x0BH\x9AT9\x99\ ...
show more
Banned by firewall: Suspicious User-Agent: -; Sensitive URI accessed: \x12[\xF2\x1BT\x0BH\x9AT9\x99\x09\xAA\x1E\xB2ESKtB\x8E\xA9g\xCF+bt\xE7\x8C[\x1Bx\x00\x1C\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0"
show less
Brute-Force
๐ฉ๐ช
NetworkOperationsTeam
2024-09-02 20:21:08
(1 year ago)
SMS Bombing. Trying to authenticate. API Abuse rate limit exceeded
Hacking
Brute-Force
Web App Attack