๐ฎ๐น
VHosting
2026-07-03 18:45:03
(15 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ซ๐ท
Baking333
2026-07-03 11:50:14
(22 hours ago)
[redacted] 2a0b:8bc0:2:fdf9::1 - - [03/Jul/2026:12:50:12 +0100] "GET /.git/HEAD HTTP/1.1" 302 1554 0 ...
show more
[redacted] 2a0b:8bc0:2:fdf9::1 - - [03/Jul/2026:12:50:12 +0100] "GET /.git/HEAD HTTP/1.1" 302 1554 0/54594 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" [redacted] 2a0b:8bc0:2:fdf9::1 - - [03/Jul/2026:12:50:12 +0100] "GET /.env HTTP/1.1" 302 1554 0/230976 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15"
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
wpadm4
2026-07-03 11:26:20
(22 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ง๐ช
cmbplf
2026-07-03 11:12:49
(23 hours ago)
2.386 requests from abuseipdb.com blacklisted IP (3w2d8h)
Brute-Force
Bad Web Bot
๐บ๐ธ
Charlesiv
2026-07-03 10:03:57
(1 day ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: BLOCK
ASN: 41608 (NextGenWebs, S.L. ...
show more
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: BLOCK
ASN: 41608 (NextGenWebs, S.L.)
Protocol: HTTP/1.1 (GET method)
Endpoint: /.env
Timestamp: 2026-07-03T03:57:23Z
Ray ID: a152f73b4daf2f85
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109
show less
Bad Web Bot
๐ง๐ฌ
HighWay
2026-07-03 09:30:43
(1 day ago)
2a0b:8bc0:2:fdf9::1 - - [03/Jul/2026:09:30:41 +0000] "GET /.git/HEAD HTTP/1.1" 403 485 "-" "Mozilla/ ...
show more
2a0b:8bc0:2:fdf9::1 - - [03/Jul/2026:09:30:41 +0000] "GET /.git/HEAD HTTP/1.1" 403 485 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0"
2a0b:8bc0:2:fdf9::1 - - [03/Jul/2026:09:30:41 +0000] "GET /.env HTTP/1.1" 403 5581 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
...
show less
Web App Attack
Bad Web Bot
๐บ๐ธ
Charlesiv
2026-07-03 04:00:08
(1 day ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: BLOCK
ASN: 41608 (NextGenWebs, S.L. ...
show more
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: BLOCK
ASN: 41608 (NextGenWebs, S.L.)
Protocol: HTTP/1.1 (GET method)
Endpoint: /.env.production
Timestamp: 2026-07-03T03:57:23Z
Ray ID: a152f7401a6095d9
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109
show less
Bad Web Bot
๐ซ๐ท
SpaceHost-Server
2026-07-02 22:31:45
(1 day ago)
Brute-Force
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-02 21:59:27
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-01.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-02 19:23:03
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:fdf9::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:fdf9::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 15:22:52.523364 2026] [security2:error] [pid 11799:tid 11799] [client 2a0b:8bc0:2:fdf9::1:58028] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blackberrycircle.org"] [uri "/.git/HEAD"] [unique_id "aka6jFSaRL81hTjmErfVUAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-02 19:07:02
(1 day ago)
Automated web scanner. Requested suspicious paths: /.git/config | /.git/HEAD. UTC: 2026-07-02 18:21: ...
show more
Automated web scanner. Requested suspicious paths: /.git/config | /.git/HEAD. UTC: 2026-07-02 18:21:34.
show less
Web App Attack
๐ฉ๐ช
macrob
2026-07-02 18:29:56
(1 day ago)
2026/07/02 18:29:53 [error] 989420#989420: *346170182 access forbidden by rule, client: 2a0b:8bc0:2: ...
show more
2026/07/02 18:29:53 [error] 989420#989420: *346170182 access forbidden by rule, client: 2a0b:8bc0:2:fdf9::1, server: binixo.lk, request: "GET /.git/HEAD HTTP/2.0", host: "binixo.lk"
2026/07/02 18:29:54 [error] 989420#989420: *346170204 access forbidden by rule, client: 2a0b:8bc0:2:fdf9::1, server: binixo.lk, request: "GET /.env HTTP/2.0", host: "binixo.lk"
2026/07/02 18:29:55 [error] 989425#989425: *346170222 access forbidden by rule, client: 2a0b:8bc0:2:fdf9::1, server: binixo.lk, request: "GET /.env.local HTTP/2.0", host: "binixo.lk"
...
show less
Web App Attack
๐ฉ๐ช
BlueWire Hosting
2026-07-02 15:46:29
(1 day ago)
Probing websites for vulnerabilities
Web App Attack
SQL Injection
๐ณ๐ฑ
Site.eu
2026-07-02 15:39:59
(1 day ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ฆ
Olexiy Backend
2026-07-02 15:39:04
(1 day ago)
2a0b:8bc0:2:fdf9::1
...
Bad Web Bot
Web App Attack