๐ฉ๐ช
ger-stg-sifi1
2026-07-02 07:34:14
(2 hours ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
antlac1
2026-07-02 05:46:27
(4 hours ago)
crowdsecurity/http-sensitive-files
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 05:10:08
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 01:10:00.149224 2026] [security2:error] [pid 7613:tid 7613] [client 2a04:c300:400::101:39912] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "68sportsuniforms.liddlesports.com"] [uri "/.git/HEAD"] [unique_id "akXyqElWZE91qMeGjItx5wAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-02 04:49:46
(5 hours ago)
Excessive multi-domain requests
Brute-Force
๐ฉ๐ช
BiancaNL
2026-07-01 23:53:42
(10 hours ago)
Fail2Ban: jail=nginx-exploit-probes on <fqdn> (port=<port>)
Hacking
๐ต๐ฑ
wielorzeczownik
2026-07-01 23:05:36
(11 hours ago)
172.31.0.3 - - [02/Jul/2026:01:05:35 +0200] "GET /.git/HEAD HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Wind ...
show more
172.31.0.3 - - [02/Jul/2026:01:05:35 +0200] "GET /.git/HEAD HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" "2a04:c300:400::101"
172.31.0.3 - - [02/Jul/2026:01:05:35 +0200] "GET /.env HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15" "2a04:c300:400::101"
172.31.0.3 - - [02/Jul/2026:01:05:35 +0200] "GET /.env.local HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0" "2a04:c300:400::101"
172.31.0.3 - - [02/Jul/2026:01:05:36 +0200] "GET /.git/config HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0" "2a04:c300:400::101"
172.31.0.3 - - [02/Jul/2026:01:05:36 +0200] "GET /.env.production HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 22:17:09
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 18:17:06.075824 2026] [security2:error] [pid 2223:tid 2223] [client 2a04:c300:400::101:43294] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gdhlgroup.com"] [uri "/.git/HEAD"] [unique_id "akWR4gkET6vX_SC3KoZm0AAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 21:47:48
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:47:40.511372 2026] [security2:error] [pid 30136:tid 30136] [client 2a04:c300:400::101:48470] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "getaacn.org.jbcllcnet.com"] [uri "/.git/HEAD"] [unique_id "akWK_JOZRP58hJTzy3Y6dgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 21:05:39
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:05:32.493591 2026] [security2:error] [pid 17460:tid 17460] [client 2a04:c300:400::101:33480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "galvez.cc"] [uri "/.git/HEAD"] [unique_id "akWBHAvyPjXcNvrrzin_qAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-07-01 20:38:24
(13 hours ago)
2a04:c300:400::101 - - [01/Jul/2026:23:38:22 +0300] "GET /api/.env HTTP/1.1" 404 4774 "-" "Mozilla/5 ...
show more
2a04:c300:400::101 - - [01/Jul/2026:23:38:22 +0300] "GET /api/.env HTTP/1.1" 404 4774 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109"
2a04:c300:400::101 - - [01/Jul/2026:23:38:22 +0300] "GET /backend/.env HTTP/1.1" 404 4722 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109"
...
show less
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-07-01 20:37:36
(13 hours ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 20:29:26
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 16:29:19.071405 2026] [security2:error] [pid 30142:tid 30142] [client 2a04:c300:400::101:38008] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "geckoturner.chezlubacov.org"] [uri "/.git/HEAD"] [unique_id "akV4n7YqaNjftn_eqGwx8AAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-01 20:27:57
(13 hours ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 19:53:32
(14 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 15:53:26.660716 2026] [security2:error] [pid 30803:tid 30803] [client 2a04:c300:400::101:57832] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fuentevictoria.com"] [uri "/.git/HEAD"] [unique_id "akVwNl0agGbTCDrGwbU0DwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 19:34:20
(14 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::101 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 15:34:15.848426 2026] [security2:error] [pid 2828:tid 2828] [client 2a04:c300:400::101:42202] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ganeki.com"] [uri "/.git/config"] [unique_id "akVrtx3fLUMXpCZjAMJEBQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack