๐ณ๐ฑ
homeshowdomain.nl
2025-11-16 23:07:02
(7 months ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2025-11-15.
show less
Hacking
Web App Attack
SSH
๐บ๐ธ
mnsf
2025-11-16 12:06:08
(7 months ago)
Too many Status 40X (13)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-16 11:30:37
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.com ...
show more
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 06:30:34.005427 2025] [security2:error] [pid 28807:tid 28807] [client 13.53.163.137:44550] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arkqp.kreweofhyatt.com"] [uri "/.env"] [unique_id "aRm12sTprs7oTjkN4S_N1AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2025-11-16 08:13:39
(7 months ago)
Excessive 404/403 errors
Brute-Force
๐บ๐ธ
TPI-Abuse
2025-11-16 07:40:14
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.com ...
show more
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 02:40:09.937725 2025] [security2:error] [pid 1166:tid 1166] [client 13.53.163.137:55562] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arthuryeung.net"] [uri "/.env.local"] [unique_id "aRl_2bE9qGyXENp8JzjCUgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-16 07:04:14
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.com ...
show more
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 02:04:09.031353 2025] [security2:error] [pid 18770:tid 18770] [client 13.53.163.137:60420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artfranz.com"] [uri "/.env.dev"] [unique_id "aRl3abuewLqdAKpaemRF0AAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
Shaik Sai Meera
2025-11-15 19:35:33
(7 months ago)
IM360 WAF: Hidden file access
Brute-Force
๐ช๐ธ
boscolopez
2025-11-15 11:46:44
(7 months ago)
13.53.163.137 - - [15/Nov/2025:12:46:44 +0100] "GET /.git/config HTTP/1.1" 302 50 "-" "python-httpx/ ...
show more
13.53.163.137 - - [15/Nov/2025:12:46:44 +0100] "GET /.git/config HTTP/1.1" 302 50 "-" "python-httpx/0.24.1" "0.001" "0.002"
...
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-11-15 03:06:30
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.com ...
show more
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 14 22:06:25.994194 2025] [security2:error] [pid 30343:tid 30343] [client 13.53.163.137:58976] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kooroshvaziri.com"] [uri "/.git/config"] [unique_id "aRfuMV8oYmODkIwDO-XqogAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-14 18:26:55
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.com ...
show more
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 14 13:26:49.081383 2025] [security2:error] [pid 29440:tid 29557] [client 13.53.163.137:45776] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ayubhamdardfoundation.org"] [uri "/.git/config"] [unique_id "aRd0aS_tembC1mkaMVif9QAAAZU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-14 16:03:02
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.com ...
show more
(mod_security) mod_security (id:210492) triggered by 13.53.163.137 (ec2-13-53-163-137.eu-north-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 14 11:02:58.379212 2025] [security2:error] [pid 21143:tid 21143] [client 13.53.163.137:56166] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.scc1.us"] [uri "/.git/config"] [unique_id "aRdSsrHzViZjn0J5IQIcFAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack