๐ง๐ช
voormedia
2026-07-11 12:23:02
(9 minutes ago)
Accessed trap at '/.env'
Web App Attack
๐ซ๐ท
Baking333
2026-07-11 11:50:56
(42 minutes ago)
[redacted] 31.56.58.124 - - [11/Jul/2026:12:49:43 +0100] "GET /.env HTTP/1.1" 302 6753 0/277763 "-" ...
show more
[redacted] 31.56.58.124 - - [11/Jul/2026:12:49:43 +0100] "GET /.env HTTP/1.1" 302 6753 0/277763 "-" "Mozilla/5.0 (ZZ; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36" [redacted] 31.56.58.124 - - [11/Jul/2026:12:50:54 +0100] "GET /.git/config HTTP/1.1" 302 6753 0/110433 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Safari/605.1.15"
show less
Bad Web Bot
Web App Attack
๐ญ๐บ
bcsaba
2026-07-11 11:04:01
(1 hour ago)
Probing for .git:
31.56.58.124 - - [11/Jul/2026:13:04:00 +0200] "GET /.git/config HTTP/1.1" 403 146 ...
show more
Probing for .git:
31.56.58.124 - - [11/Jul/2026:13:04:00 +0200] "GET /.git/config HTTP/1.1" 403 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/601.1.56 (KHTML, like Gecko) Version/9.0 Safari/601.1.56"
show less
Web App Attack
Anonymous
2026-07-11 06:51:51
(5 hours ago)
"GET /.env HTTP/1.1"
Hacking
Web App Attack
๐ซ๐ท
dynamix
2026-07-11 06:11:51
(6 hours ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 06:09:26
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 02:09:18.474880 2026] [security2:error] [pid 12074:tid 12074] [client 31.56.58.124:44594] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cmexico.co"] [uri "/.git/config"] [unique_id "alHeDkIAO_LJXlTk9s6S9QAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 05:52:02
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 01:51:57.948618 2026] [security2:error] [pid 15055:tid 15055] [client 31.56.58.124:57728] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "clubfansite.com"] [uri "/.git/config"] [unique_id "alHZ_btLhzj5ns39bo1d-gAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 05:14:25
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 01:14:19.504734 2026] [security2:error] [pid 26727:tid 26727] [client 31.56.58.124:37488] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chatgptfrance.net"] [uri "/.env"] [unique_id "alHRK2BszfL0hyOD8KrqHgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-11 04:12:48
(8 hours ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 31.56.58.124 (FR/France/124.as21559 ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 31.56.58.124 (FR/France/124.as215599.net): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 04:07:02
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 00:06:54.176632 2026] [security2:error] [pid 32077:tid 32077] [client 31.56.58.124:46778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "calvarycavaliers.org"] [uri "/.git/config"] [unique_id "alHBXvXREnV8yuXn6efcCQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 02:25:04
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 22:24:59.062210 2026] [security2:error] [pid 32162:tid 32162] [client 31.56.58.124:49194] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bernabeu.org"] [uri "/.env"] [unique_id "alGpe3GIlsTzApeCIyq-EAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ญ๐บ
bcsaba
2026-07-11 02:18:53
(10 hours ago)
Probing for .git:
31.56.58.124 - - [11/Jul/2026:04:18:50 +0200] "GET /.git/config HTTP/1.1" 403 146 ...
show more
Probing for .git:
31.56.58.124 - - [11/Jul/2026:04:18:50 +0200] "GET /.git/config HTTP/1.1" 403 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.5.20"
show less
Web App Attack
๐ฉ๐ช
4server
2026-07-11 01:15:38
(11 hours ago)
[SatJul1103:15:34.1248722026][security2:error][pid1991807:tid1991936][client31.56.58.124:0]ModSecuri ...
show more
[SatJul1103:15:34.1248722026][security2:error][pid1991807:tid1991936][client31.56.58.124:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"archi-box.ch\"][uri\"/.git/config\"][unique_id\"alGZNuw9X_OjKKU1ThWs3gAAAQc\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 01:10:24
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 31.56.58.124 (124.as215599.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 21:10:20.905548 2026] [security2:error] [pid 23378:tid 23378] [client 31.56.58.124:46578] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apsni.net"] [uri "/.git/config"] [unique_id "alGX_POz9Vjp-2yqMg-jsgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-11 01:05:28
(11 hours ago)
Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=4
Hacking