๐จ๐ฟ
akac
2026-07-17 05:01:07
(3 hours ago)
Web vulnerability scanning: HTTP/1.1 GET /azure/.env
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-16 22:00:21
(10 hours ago)
Auto-ban: >3000 req/min op 2026-07-16
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-16 15:05:03
(17 hours ago)
(mod_security) mod_security (id:210492) triggered by 13.40.228.174 (ec2-13-40-228-174.eu-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 13.40.228.174 (ec2-13-40-228-174.eu-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 11:04:54.515770 2026] [security2:error] [pid 3923:tid 3972] [client 13.40.228.174:35068] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ainavelas.com"] [uri "/.git/config"] [unique_id "aljzFk2K48r5kabym3pFPAAAAU4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 12:51:11
(20 hours ago)
(mod_security) mod_security (id:210492) triggered by 13.40.228.174 (ec2-13-40-228-174.eu-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 13.40.228.174 (ec2-13-40-228-174.eu-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 08:51:05.290393 2026] [security2:error] [pid 29666:tid 29666] [client 13.40.228.174:57162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jabbosjingles.com"] [uri "/.git/config"] [unique_id "aljTuTaghfh7EGkZD0JiIwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 08:59:00
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 13.40.228.174 (ec2-13-40-228-174.eu-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 13.40.228.174 (ec2-13-40-228-174.eu-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 04:58:55.441964 2026] [security2:error] [pid 12812:tid 12812] [client 13.40.228.174:56948] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "j3pr.com"] [uri "/.git/config"] [unique_id "alidT9T6CGopBotKEW1D8gAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
alferez
2026-07-16 06:41:23
(1 day ago)
Searching .(env|sql|zip|tar|rar) files
Hacking
Exploited Host
Web App Attack
Anonymous
2026-07-16 01:47:17
(1 day ago)
(caddyscan) Scanner path probe from 13.40.228.174 (GB/United Kingdom/ec2-13-40-228-174.eu-west-2.com ...
show more
(caddyscan) Scanner path probe from 13.40.228.174 (GB/United Kingdom/ec2-13-40-228-174.eu-west-2.compute.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 13.40.228.174 - - [16/Jul/2026:01:47:14 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 13.40.228.174 - - [16/Jul/2026:01:47:14 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 13.40.228.174 - - [16/Jul/2026:01:47:15 +0000] "GET /.env.local HTTP/1.1"
[REDACTED] 200 2627 13.40.228.174 - - [16/Jul/2026:01:47:15 +0000] "GET /.env.production HTTP/1.1"
[REDACTED] 200 2627 13.40.228.174 - - [16/Jul/2026:01:47:15 +0000] "GET /.env.staging HTTP/1.1"
show less
Port Scan
๐ฎ๐น
VHosting
2026-07-15 20:15:02
(1 day ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
Anonymous
2026-07-15 19:59:59
(1 day ago)
Trapped by Fail2Ban: Too many login failures from 13.40.228.174
Brute-Force
Hacking
๐ฉ๐ช
R.G.
2026-07-15 18:48:13
(1 day ago)
(ScanningForFiles) Scanning for files triggerd 13.40.228.174 (GB/United Kingdom/ec2-13-40-228-174.eu ...
show more
(ScanningForFiles) Scanning for files triggerd 13.40.228.174 (GB/United Kingdom/ec2-13-40-228-174.eu-west-2.compute.amazonaws.com): 10 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack