๐ฉ๐ช
4server
2026-07-03 07:46:42
(1 hour ago)
[FriJul0309:46:36.9768042026][security2:error][pid4068925:tid4069017][client2.25.180.77:0]ModSecurit ...
show more
[FriJul0309:46:36.9768042026][security2:error][pid4068925:tid4069017][client2.25.180.77:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"mail.selenemodestipastrydetails.it\"][uri\"/.git/config\"][unique_id\"akdo3OR6dL6VKuYehCLF2QAAAMY\"]
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
2026-07-03 04:34:59
(4 hours ago)
apache-auth
Brute-Force
Web App Attack
๐ฉ๐ช
todix
2026-07-02 10:44:25
(22 hours ago)
Web App Attack Exploid from 2.25.180.77
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 09:05:24
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2.25.180.77 (srv1737127.hstgr.cloud): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2.25.180.77 (srv1737127.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:05:20.532602 2026] [security2:error] [pid 17360:tid 17360] [client 2.25.180.77:51776] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whitetaildetailing.com"] [uri "/.env.production"] [unique_id "akYp0HQImzaC61wl5NOsxgAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 07:21:04
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2.25.180.77 (srv1737127.hstgr.cloud): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2.25.180.77 (srv1737127.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 03:20:56.491813 2026] [security2:error] [pid 20118:tid 20118] [client 2.25.180.77:54582] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.davisllp.com"] [uri "/.git/config"] [unique_id "akYRWLCIG40o3zcJ8mnubAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
dbmwebdesign
2026-07-02 07:15:49
(1 day ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐ซ๐ท
Baking333
2026-07-01 23:00:51
(1 day ago)
[redacted] 2.25.180.77 - - [01/Jul/2026:23:16:32 +0100] "GET / HTTP/1.1" 200 7650 0/175030 "https:// ...
show more
[redacted] 2.25.180.77 - - [01/Jul/2026:23:16:32 +0100] "GET / HTTP/1.1" 200 7650 0/175030 "https://[redacted]/.[redacted]" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0" [redacted] 2.25.180.77 - - [01/Jul/2026:23:16:32 +0100] "GET / HTTP/1.1" 200 7646 0/122278 "https://[redacted]/api/.env" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15"
show less
Bad Web Bot
Web App Attack
๐ซ๐ท
Baking333
2026-07-01 22:16:30
(1 day ago)
[redacted] 2.25.180.77 - - [01/Jul/2026:23:16:27 +0100] "GET /.[redacted] HTTP/1.1" 302 6743 0/44907 ...
show more
[redacted] 2.25.180.77 - - [01/Jul/2026:23:16:27 +0100] "GET /.[redacted] HTTP/1.1" 302 6743 0/44907 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0" [redacted] 2.25.180.77 - - [01/Jul/2026:23:16:27 +0100] "GET /api/.env HTTP/1.1" 302 1556 0/57142 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 19:27:46
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2.25.180.77 (srv1737127.hstgr.cloud): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2.25.180.77 (srv1737127.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 15:27:41.553765 2026] [security2:error] [pid 26950:tid 27021] [client 2.25.180.77:38578] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "echrony.com"] [uri "/.env.production"] [unique_id "akVqLW_Ojv9vTO6tS-bYvwAAAQo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-01 10:05:43
(1 day ago)
Blocked: Reason='Suspicious traffic score=75 (review-based detection)'; Requests=125
Hacking
๐ซ๐ท
dynamix
2026-07-01 08:55:35
(2 days ago)
Multiple WAF Violations
Web App Attack
๐ณ๐ด
jad-abuse
2026-07-01 05:13:24
(2 days ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_expos ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 2 hits.
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 17:54:37
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2.25.180.77 (srv1737127.hstgr.cloud): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2.25.180.77 (srv1737127.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 13:54:30.601513 2026] [security2:error] [pid 30367:tid 30415] [client 2.25.180.77:34010] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adprosfla.adprospb.com"] [uri "/.git/HEAD"] [unique_id "akQC1pnnH6_mH-soficcUgAAAUM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
khlab
2026-06-30 07:23:41
(3 days ago)
Honeypot triggered on web app: probed /.git/HEAD
Bad Web Bot
Web App Attack
๐ฌ๐ง
Oakley
2026-06-30 05:27:42
(3 days ago)
(confirmed_bot_sig) Confirmed bot
Hacking