๐ซ๐ท
SpaceHost-Server
2026-07-16 22:26:03
(1 day ago)
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-15 22:25:48
(2 days ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 22:13:06
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 13.125.233.148 (ec2-13-125-233-148.ap-northeast ...
show more
(mod_security) mod_security (id:210492) triggered by 13.125.233.148 (ec2-13-125-233-148.ap-northeast-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 18:13:02.169854 2026] [security2:error] [pid 31096:tid 31096] [client 13.125.233.148:54260] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bins.mcbrearty.org"] [uri "/.git/config"] [unique_id "algF7giKyR8O5TVABV21WQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-15 22:00:20
(2 days ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-14.
show less
Web App Attack
SSH
Hacking
๐ฉ๐ช
macrob
2026-07-15 21:21:32
(2 days ago)
2026/07/15 21:21:29 [error] 3735188#3735188: *379430319 access forbidden by rule, client: 13.125.233 ...
show more
2026/07/15 21:21:29 [error] 3735188#3735188: *379430319 access forbidden by rule, client: 13.125.233.148, server: binixo.pl, request: "GET /.git/config HTTP/2.0", host: "binixo.pl"
2026/07/15 21:21:30 [error] 3735188#3735188: *379428696 access forbidden by rule, client: 13.125.233.148, server: binixo.pl, request: "GET /.env HTTP/2.0", host: "binixo.pl"
2026/07/15 21:21:30 [error] 3735188#3735188: *379428696 access forbidden by rule, client: 13.125.233.148, server: binixo.pl, request: "GET /.env.local HTTP/2.0", host: "binixo.pl"
...
show less
Web App Attack
๐ฉ๐ช
MBombeck
2026-07-15 20:00:19
(2 days ago)
Fail2Ban/traefik-botsearch on apps-01: banned after 5 failures
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 04:10:38
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 13.125.233.148 (ec2-13-125-233-148.ap-northeast ...
show more
(mod_security) mod_security (id:210492) triggered by 13.125.233.148 (ec2-13-125-233-148.ap-northeast-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 00:10:32.083167 2026] [security2:error] [pid 6356:tid 6356] [client 13.125.233.148:45778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carbtestingidaho.com"] [uri "/.git/config"] [unique_id "alcIOC62Chcs2qR4RMEkyQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-14 21:59:19
(3 days ago)
Auto-ban: >3000 req/min op 2026-07-14
Web App Attack
SSH
Hacking
๐ซ๐ท
dynamix
2026-07-14 20:37:17
(3 days ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 20:06:51
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 13.125.233.148 (ec2-13-125-233-148.ap-northeast ...
show more
(mod_security) mod_security (id:210492) triggered by 13.125.233.148 (ec2-13-125-233-148.ap-northeast-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 16:06:46.873655 2026] [security2:error] [pid 5849:tid 5849] [client 13.125.233.148:37436] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "capriexpress.com"] [uri "/.git/config"] [unique_id "alaW1sa2s9s52DZB_VGglQAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-14 18:30:23
(3 days ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ซ๐ท
Octopuce
2026-07-14 12:01:20
(3 days ago)
Aggressive web search of vulnerable pages: /.env /.env.local /app/.env /apps/.env /api/.env ...
Web App Attack