๐ฉ๐ช
pscriptos
2026-07-03 23:11:17
(2 days ago)
This IP was detected by CrowdSec triggering crowdsecurity/appsec-vpatch
Web App Attack
๐ง๐ช
cmbplf
2026-07-03 22:06:32
(2 days ago)
2.157 requests from abuseipdb.com blacklisted IP (1yr3mos3w)
Brute-Force
Bad Web Bot
๐ฌ๐ง
Aetherweb Ark
2026-07-03 14:54:08
(2 days ago)
(mod_security) mod_security (id:949110) triggered by 2a0b:8bc0:2:2034::1 (Unknown): N in the last X ...
show more
(mod_security) mod_security (id:949110) triggered by 2a0b:8bc0:2:2034::1 (Unknown): N in the last X secs
show less
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-03 12:37:55
(2 days ago)
Excessive multi-domain requests
Brute-Force
๐ณ๐ฑ
nate naten
2026-07-03 10:05:44
(3 days ago)
HoneyTrap: unknown_probe attempt on /.git/HEAD from The Netherlands
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 08:46:33
(3 days ago)
(mod_security) mod_security (id:949110) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:949110) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:46:27.726249 2026] [security2:error] [pid 31799:tid 31799] [client 2a0b:8bc0:2:2034::1:49960] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "catfishconnection.com.crazycontrols.com"] [uri "/.git/config"] [unique_id "akd2483k29cM1cmQj2dvcQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
YF
2026-07-03 08:10:19
(3 days ago)
Environment file probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 08:05:12
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:05:06.288956 2026] [security2:error] [pid 1535:tid 1535] [client 2a0b:8bc0:2:2034::1:52166] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "corporatepedals.vanemby.com"] [uri "/.git/HEAD"] [unique_id "akdtMhhbyGQ0LAYA6ymPpgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Catalin Negru
2026-07-03 07:43:12
(3 days ago)
Recidive ban by fail2ban on server.blackbit.ro
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-03 07:11:18
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 03:11:10.432809 2026] [security2:error] [pid 2103:tid 2103] [client 2a0b:8bc0:2:2034::1:33244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crystalshealinglights.com.my-spec.com"] [uri "/.env.production"] [unique_id "akdgjnAWsa7sSW7MJyafuAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 06:51:52
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 02:51:47.064040 2026] [security2:error] [pid 29113:tid 29113] [client 2a0b:8bc0:2:2034::1:49132] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "connectigramme.com.linguistes.com"] [uri "/.git/HEAD"] [unique_id "akdcA3nfwFb4_m1swNprjgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 06:00:24
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 02:00:18.234922 2026] [security2:error] [pid 10887:tid 10887] [client 2a0b:8bc0:2:2034::1:58032] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cultiplant.com.menagri.com"] [uri "/.env.production"] [unique_id "akdP8sxYLlDTz21Rzo5iHgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-03 05:06:54
(3 days ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐ฎ๐น
VHosting
2026-07-03 04:50:06
(3 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 04:15:25
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2034::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 00:15:20.302108 2026] [security2:error] [pid 15231:tid 15231] [client 2a0b:8bc0:2:2034::1:47214] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "classics5.buffaloweddingdeejay.com"] [uri "/.git/HEAD"] [unique_id "akc3WBRgjr2O4fZs0vIMYwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack