๐บ๐ธ
TPI-Abuse
2026-07-09 07:27:32
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2d:8d18::1 (srv1814764.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2d:8d18::1 (srv1814764.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 03:27:27.697713 2026] [security2:error] [pid 12711:tid 12711] [client 2a02:4780:2d:8d18::1:58402] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nerdwizards.toyz.net"] [uri "/.env"] [unique_id "ak9NX6FQ2HlozAtrqUDivwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-09 05:10:35
(4 hours ago)
Try to access /.git/config
Web App Attack
๐ฉ๐ช
Gwyneth Llewelyn
2026-07-08 21:34:04
(11 hours ago)
2026/07/08 22:34:03 [error] 2215#2215: *1495906 access forbidden by rule, client: 2a02:4780:2d:8d18: ...
show more
2026/07/08 22:34:03 [error] 2215#2215: *1495906 access forbidden by rule, client: 2a02:4780:2d:8d18::1, server: [redacted], request: "GET /autodiscover.xml/backend/.env HTTP/1.1", host: "[redacted]", referrer: "https://autodiscover.betatechnologies.info/backend/.env"
2026/07/08 22:34:03 [error] 2215#2215: *1495913 access forbidden by rule, client: 2a02:4780:2d:8d18::1, server: [redacted], request: "GET /autodiscover.xml/api/.env HTTP/1.1", host: "[redacted]", referrer: "https://autodiscover.betatechnologies.info/api/.env"
2026/07/08 22:34:03 [error] 2215#2215: *1495906 access forbidden by rule, client: 2a02:4780:2d:8d18::1, server: [redacted], request: "GET /autodiscover.xml/.env HTTP/1.1", host: "[redacted]", referrer: "https://autodiscover.betatechnologies.info/.env"
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 20:31:34
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2d:8d18::1 (srv1814764.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2d:8d18::1 (srv1814764.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 16:31:27.872382 2026] [security2:error] [pid 12732:tid 12732] [client 2a02:4780:2d:8d18::1:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.hvacs-aircon.com"] [uri "/.git/HEAD"] [unique_id "ak6zn23rXdUJL7gAdLcDSQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 17:55:19
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2d:8d18::1 (srv1814764.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:2d:8d18::1 (srv1814764.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 13:55:11.300585 2026] [security2:error] [pid 3417:tid 3417] [client 2a02:4780:2d:8d18::1:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.distro.media"] [uri "/.env"] [unique_id "ak6O_37F_gy8wibnH-FWtgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Blexyel
2026-07-08 17:45:48
(15 hours ago)
2a02:4780:2d:8d18::1 - - [08/Jul/2026:19:45:47 +0200] "GET /.git/config HTTP/1.1" 404 120 "-" "Mozil ...
show more
2a02:4780:2d:8d18::1 - - [08/Jul/2026:19:45:47 +0200] "GET /.git/config HTTP/1.1" 404 120 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15"
...
show less
Brute-Force
Web App Attack
๐ฎ๐น
VHosting
2026-07-08 17:35:04
(15 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack