๐ฎ๐ฑ
spd.co.il
2026-07-08 19:01:39
(22 hours ago)
Web application attack detected
Hacking
Web App Attack
๐จ๐ญ
zynex
2026-07-06 09:11:09
(3 days ago)
URL Probing: /wp-content/plugins/pwnd/pwnd.php
Web App Attack
Anonymous
2026-07-06 08:05:06
(3 days ago)
Web Clients HTTP URL JavaScript Function Cross-Site Scripting.
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 07:59:52
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 170.124.32.136 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.124.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 03:59:36.844967 2026] [security2:error] [pid 2841:tid 2841] [client 170.124.32.136:47101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hanabritgermanshepherds.com"] [uri "/.env.dev"] [unique_id "aktgaD4Y6yavtL5SIS4rwgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
conseilgouz
2026-07-06 00:25:15
(3 days ago)
upe-7 : Trying access unauthorized files/dir=>/wp-includes/Requests/about.php
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-05 22:52:18
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 170.124.32.136 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.124.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:52:00.381926 2026] [security2:error] [pid 18673:tid 18673] [client 170.124.32.136:34537] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "comments.barkdull.org"] [uri "/.env.dev"] [unique_id "akrgENi6qBs9hBMWu4gk7wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-07-05 22:51:43
(3 days ago)
[MonJul0600:51:31.8400432026][security2:error][pid700952:tid701338][client170.124.32.136:0]ModSecuri ...
show more
[MonJul0600:51:31.8400432026][security2:error][pid700952:tid701338][client170.124.32.136:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"comarcosa.com\"][uri\"/.env.dev\"][unique_id\"akrf89o8eT-VMmFKPOxDMAAAABc\"]
show less
Hacking
Web App Attack
๐ฉ๐ช
marten_o
2026-07-05 22:38:45
(3 days ago)
170.124.32.136 - - [06/Jul/2026:00:38:44 +0200] "GET /.env.prod HTTP/2.0" 404 958 "-" "Mozilla/5.0 ( ...
show more
170.124.32.136 - - [06/Jul/2026:00:38:44 +0200] "GET /.env.prod HTTP/2.0" 404 958 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36" 369 1346
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:19:34
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 170.124.32.136 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.124.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:19:19.599359 2026] [security2:error] [pid 7970:tid 7970] [client 170.124.32.136:56469] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "3905ccn.org"] [uri "/.env.bak"] [unique_id "akrYZwVFubOr4bqJ65KomQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ญ๐บ
bcsaba
2026-07-05 21:46:07
(3 days ago)
Looking for phpmyadmin
170.124.32.136 - - [05/Jul/2026:23:45:59 +0200] "GET /phpmyadmin/ HTTP/2.0" 4 ...
show more
Looking for phpmyadmin
170.124.32.136 - - [05/Jul/2026:23:45:59 +0200] "GET /phpmyadmin/ HTTP/2.0" 404 1487 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 21:24:07
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 170.124.32.136 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.124.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 17:23:51.043234 2026] [security2:error] [pid 7753:tid 7853] [client 170.124.32.136:56447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.aapm.info"] [uri "/.env.dev.local"] [unique_id "akrLZ7GAlwivjaT3KbVaYQAAAgo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
RidgeStar
2026-07-05 21:20:34
(3 days ago)
2026-07-05T13:13:15-07:00: 55'"><script>alert(68752)</script>
Port Scan
Hacking
Anonymous
2026-07-05 21:06:05
(3 days ago)
Trying to access config files
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-05 20:48:49
(3 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
Lee Daniel
2026-07-05 20:33:50
(3 days ago)
170.124.32.136 - - [05/Jul/2026:16:33:49 -0400] "GET /.env HTTP/1.1" 403 6299 "-" "Mozilla/5.0 (Maci ...
show more
170.124.32.136 - - [05/Jul/2026:16:33:49 -0400] "GET /.env HTTP/1.1" 403 6299 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack