๐ซ๐ท
dynamix
2026-07-16 20:03:37
(17 hours ago)
Multiple WAF Violations
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-16 15:03:59
(22 hours ago)
Excessive 404/403 errors
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-16 07:48:13
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 13.208.219.218 (ec2-13-208-219-218.ap-northeast ...
show more
(mod_security) mod_security (id:210492) triggered by 13.208.219.218 (ec2-13-208-219-218.ap-northeast-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 03:48:05.826735 2026] [security2:error] [pid 3718519:tid 3718519] [client 13.208.219.218:49382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fatjesus.com"] [uri "/.git/config"] [unique_id "aliMtb8J3siCYacQPdMeRAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 03:22:51
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 13.208.219.218 (ec2-13-208-219-218.ap-northeast ...
show more
(mod_security) mod_security (id:210492) triggered by 13.208.219.218 (ec2-13-208-219-218.ap-northeast-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 23:22:43.563601 2026] [security2:error] [pid 5026:tid 5026] [client 13.208.219.218:49750] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fastpc.biz"] [uri "/.git/config"] [unique_id "alhOgzO2gYgDq6uT03kTSwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 00:40:49
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 13.208.219.218 (ec2-13-208-219-218.ap-northeast ...
show more
(mod_security) mod_security (id:210492) triggered by 13.208.219.218 (ec2-13-208-219-218.ap-northeast-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 20:40:43.285014 2026] [security2:error] [pid 15621:tid 15634] [client 13.208.219.218:37100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fastestcopyright.com"] [uri "/.git/config"] [unique_id "algoi2S6I8aPGr0kn06vbQAAAsg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 22:24:19
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 13.208.219.218 (ec2-13-208-219-218.ap-northeast ...
show more
(mod_security) mod_security (id:210492) triggered by 13.208.219.218 (ec2-13-208-219-218.ap-northeast-3.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 18:24:15.954218 2026] [security2:error] [pid 20347:tid 20347] [client 13.208.219.218:34548] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gwdailey.com"] [uri "/.git/config"] [unique_id "algIjyjkhiN5dOQWqNKGCQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-15 22:00:41
(1 day ago)
Auto-ban: >3000 req/min op 2026-07-15
Web App Attack
SSH
Hacking
๐ซ๐ท
Octopuce
2026-07-15 18:35:43
(1 day ago)
Aggressive web search of vulnerable pages: / /.env /.env.local /app/.env /apps/.env ...
Web App Attack
Anonymous
2026-07-15 17:22:26
(1 day ago)
13.208.219.218 - - [15/Jul/2026:19:22:20 +0200] "GET /phpinfo.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 ...
show more
13.208.219.218 - - [15/Jul/2026:19:22:20 +0200] "GET /phpinfo.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
13.208.219.218 - - [15/Jul/2026:19:22:20 +0200] "GET /info.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
13.208.219.218 - - [15/Jul/2026:19:22:21 +0200] "GET /php.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
13.208.219.218 - - [15/Jul/2026:19:22:21 +0200] "GET /i.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
13.208.219.218 - - [15/Jul/2026:19:22:21 +0200] "GET /pi.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131
...
show less
Web App Attack
๐ณ๐ฑ
Mangelot Hosting
2026-07-15 16:20:26
(1 day ago)
(modsecurity) srv104 ModSecurity 13.208.219.218 (JP/Japan/ec2-13-208-219-218.ap-northeast-3.compute. ...
show more
(modsecurity) srv104 ModSecurity 13.208.219.218 (JP/Japan/ec2-13-208-219-218.ap-northeast-3.compute.amazonaws.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-15 05:20:41
(2 days ago)
Excessive 404/403 errors
Brute-Force
๐ฎ๐น
VHosting
2026-07-15 03:45:03
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2026-07-14 20:58:58
(2 days ago)
Multiple WAF Violations
Web App Attack
๐ณ๐ฑ
thedreamer.nl
2026-07-14 13:52:26
(2 days ago)
13.208.219.218 - - [14/Jul/2026:15:51:58 +0200] "GET /.git/config HTTP/1.1" 499 0 "-" "Mozilla/5.0 ( ...
show more
13.208.219.218 - - [14/Jul/2026:15:51:58 +0200] "GET /.git/config HTTP/1.1" 499 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" "JP" "Osaka" "34.69300" "135.50050"
13.208.219.218 - - [14/Jul/2026:15:51:59 +0200] "GET /.env HTTP/1.1" 499 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" "JP" "Osaka" "34.69300" "135.50050"
13.208.219.218 - - [14/Jul/2026:15:52:00 +0200] "GET /.env.local HTTP/1.1" 499 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" "JP" "Osaka" "34.69300" "135.50050"
13.208.219.218 - - [14/Jul/2026:15:52:01 +0200] "GET /.env.production HTTP/1.1" 499 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" "JP" "Osaka" "34.69300" "135.50050"
...
show less
Hacking
Brute-Force
Bad Web Bot
Web App Attack