๐ช๐ธ
alferez
2026-07-18 19:31:22
(13 minutes ago)
Searching .(env|sql|zip|tar|rar) files
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 15:40:23
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 3.89.185.109 (ec2-3-89-185-109.compute-1.amazon ...
show more
(mod_security) mod_security (id:210492) triggered by 3.89.185.109 (ec2-3-89-185-109.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 11:40:18.882175 2026] [security2:error] [pid 12743:tid 12743] [client 3.89.185.109:42588] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestrestaurants.com"] [uri "/.env"] [unique_id "alueYtNo_aW6GaIxeJpPRAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 14:34:41
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 3.89.185.109 (ec2-3-89-185-109.compute-1.amazon ...
show more
(mod_security) mod_security (id:210492) triggered by 3.89.185.109 (ec2-3-89-185-109.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 10:34:34.358255 2026] [security2:error] [pid 31329:tid 31386] [client 3.89.185.109:58416] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oldcarz.com"] [uri "/.env"] [unique_id "aluO-sbn7ho26dzfgPkK1QAAAUc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 14:19:21
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 3.89.185.109 (ec2-3-89-185-109.compute-1.amazon ...
show more
(mod_security) mod_security (id:210492) triggered by 3.89.185.109 (ec2-3-89-185-109.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 10:19:14.491415 2026] [security2:error] [pid 28285:tid 28285] [client 3.89.185.109:36372] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gregdember.com"] [uri "/.git/config"] [unique_id "aluLYlynQXC4z0bqEriwGQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 13:12:09
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 3.89.185.109 (ec2-3-89-185-109.compute-1.amazon ...
show more
(mod_security) mod_security (id:210492) triggered by 3.89.185.109 (ec2-3-89-185-109.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 09:12:03.619841 2026] [security2:error] [pid 9285:tid 9285] [client 3.89.185.109:44854] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kevintheadventurer.org"] [uri "/.env"] [unique_id "alt7o5fZZYC1m-PN9Dnf4wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-18 12:40:04
(7 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
nyt
2026-07-18 10:56:34
(8 hours ago)
Sensitive File Probe
Web App Attack
๐ท๐บ
DZBOT
2026-07-18 10:27:09
(9 hours ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ฆ๐บ
afleventoffice.com.au
2026-07-18 00:09:05
(19 hours ago)
GET /.git/config HTTP/1.1
Web App Attack