๐ฌ๐ง
openstrike.co.uk
2026-07-09 05:16:18
(1 day ago)
11 attacks on config grabbing URLs (type 2), password grabbing URLs, VC URLs, env grabbing URLs:
GET ...
show more
11 attacks on config grabbing URLs (type 2), password grabbing URLs, VC URLs, env grabbing URLs:
GET /config.json HTTP/1.1
GET /.aws/credentials HTTP/1.1
GET /.git/config HTTP/1.1
GET /.env.production HTTP/1.1
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-09 05:04:30
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 01:04:24.003066 2026] [security2:error] [pid 32205:tid 32205] [client 201.78.128.117:33874] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web217.dnchosting.com"] [uri "/.git/HEAD"] [unique_id "ak8r2OojOu79gkjVPsqRcwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
dbmwebdesign
2026-07-09 05:00:26
(1 day ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
Anonymous
2026-07-09 04:54:53
(1 day ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 04:44:40
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 00:44:33.821332 2026] [security2:error] [pid 20400:tid 20400] [client 201.78.128.117:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.hvacs-aircon.com"] [uri "/.git/HEAD"] [unique_id "ak8nMXOe5tQFLUO_dBIyngAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-09 04:44:39
(1 day ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ซ๐ฎ
payincog
2026-07-08 18:00:11
(1 day ago)
Date: Jul 08 20:37:24 2026 EAT | Reported IP: 201.78.128.117 mod_security | id: 930130 949110 | GB/p ...
show more
Date: Jul 08 20:37:24 2026 EAT | Reported IP: 201.78.128.117 mod_security | id: 930130 949110 | GB/pay.my_domain/- | Connections: 1 | Blocked: Permanent Block: [LF_MODSEC] | Logs: ; Restricted File Access Attempt; Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound
show less
SQL Injection
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-08 17:40:54
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 13:40:47.809386 2026] [security2:error] [pid 6782:tid 6782] [client 201.78.128.117:48512] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watermarks.info"] [uri "/.git/HEAD"] [unique_id "ak6LnweA2aGlUocJDe2ojgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Baking333
2026-07-08 13:42:29
(2 days ago)
[redacted] 201.78.128.117 - - [08/Jul/2026:14:42:26 +0100] "GET /.git/HEAD HTTP/1.1" 302 1579 0/7105 ...
show more
[redacted] 201.78.128.117 - - [08/Jul/2026:14:42:26 +0100] "GET /.git/HEAD HTTP/1.1" 302 1579 0/71057 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0" [redacted] 201.78.128.117 - - [08/Jul/2026:14:42:27 +0100] "GET /.env HTTP/1.1" 302 6798 0/79437 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 08:24:14
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 04:24:08.607704 2026] [security2:error] [pid 8874:tid 8874] [client 201.78.128.117:40542] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shafie.net"] [uri "/.git/HEAD"] [unique_id "ak4JKGAaGWB6MJ4u6ogaUAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-08 04:22:25
(2 days ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 03:53:35
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 201.78.128.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 23:53:28.473348 2026] [security2:error] [pid 30216:tid 30216] [client 201.78.128.117:42790] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "serviciosysolucionesindustrialesreal.com"] [uri "/.git/HEAD"] [unique_id "ak3JuKJemP2WFCOR7Fwj9AAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-07 22:00:00
(2 days ago)
Auto-ban: >3000 req/min op 2026-07-07
Web App Attack
SSH
Hacking
๐ฎ๐น
VHosting
2026-07-07 20:35:03
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ฆ๐ช
CG
2026-07-06 17:37:16
(3 days ago)
Web application attack, Automated scan
Web App Attack
Hacking
SQL Injection