๐ซ๐ฎ
Christopher Hughes
2026-07-19 02:35:46
(33 minutes ago)
34.101.165.107 - - [19/Jul/2026:03:35:45 +0100] "GET /.svn/entries HTTP/2.0" 302 288 "-" "Mozilla/5. ...
show more
34.101.165.107 - - [19/Jul/2026:03:35:45 +0100] "GET /.svn/entries HTTP/2.0" 302 288 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
...
show less
Web App Attack
๐บ๐ธ
Lee Daniel
2026-07-19 02:29:10
(40 minutes ago)
34.101.165.107 - - [18/Jul/2026:22:29:09 -0400] "GET /.aws/credentials HTTP/1.1" 403 6314 "-" "Mozil ...
show more
34.101.165.107 - - [18/Jul/2026:22:29:09 -0400] "GET /.aws/credentials HTTP/1.1" 403 6314 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot"
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-19 02:01:02
(1 hour ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)
Hacking
Web App Attack
๐ฎ๐น
mediarama.com
2026-07-19 01:46:18
(1 hour ago)
Banned by Fail2Ban
Web App Attack
๐ซ๐ท
masterguru
2026-07-19 01:37:54
(1 hour ago)
URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ...
show more
URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-193)
show less
Hacking
๐ฉ๐ช
paissangroup
2026-07-19 01:35:34
(1 hour ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 01:27:13
(1 hour ago)
(mod_security) mod_security (id:210730) triggered by 34.101.165.107 (107.165.101.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210730) triggered by 34.101.165.107 (107.165.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 21:27:06.860729 2026] [security2:error] [pid 971850:tid 971850] [client 34.101.165.107:39548] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||secuencia.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "secuencia.com"] [uri "/z9x8c7v6b5-debug-trigger-secuencia.com"] [unique_id "alwn6kdmvflQqP3WrTil0gAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-19 01:21:01
(1 hour ago)
Fail2Ban: ModSecurity detected a web application attack.
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 01:00:36
(2 hours ago)
(mod_security) mod_security (id:210730) triggered by 34.101.165.107 (107.165.101.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210730) triggered by 34.101.165.107 (107.165.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 21:00:28.820144 2026] [security2:error] [pid 921277:tid 921277] [client 34.101.165.107:40700] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||sendera.mx|F|2"] [data ".key"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "sendera.mx"] [uri "/server.key"] [unique_id "alwhrFGSp8i1pzc1nvYGjAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
andypiper
2026-07-19 01:00:15
(2 hours ago)
CrowdSec ban for AbuseIPDB Top List
Brute-Force
Web App Attack
๐ซ๐ท
masterguru
2026-07-19 00:40:28
(2 hours ago)
Restricted File Access Attempt. Matched phrase ".git-credentials" at REQUEST_FILENAME. (930130-201)
Hacking
Web App Attack
๐ฉ๐ช
EGP Abuse Dept
2026-07-19 00:37:53
(2 hours ago)
Scanning for web/db/file exploits on security-seals.global
SQL Injection
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 00:34:53
(2 hours ago)
(mod_security) mod_security (id:210730) triggered by 34.101.165.107 (107.165.101.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210730) triggered by 34.101.165.107 (107.165.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 20:34:47.106314 2026] [security2:error] [pid 3656506:tid 3656632] [client 34.101.165.107:52562] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||secretdecoded.com|F|2"] [data ".conf"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "secretdecoded.com"] [uri "/rclone.conf"] [unique_id "alwbpyaUbKXLVgPTRMu5ngAAANQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-07-19 00:16:57
(2 hours ago)
[SunJul1902:16:50.0014982026][security2:error][pid2846439:tid2846803][client34.101.165.107:0]ModSecu ...
show more
[SunJul1902:16:50.0014982026][security2:error][pid2846439:tid2846803][client34.101.165.107:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"server-privato.com\"][uri\"/.git/HEAD\"][unique_id\"alwXcbDYW5ObC_7WW0L67gAAAEk\"]
show less
Hacking
Web App Attack
๐บ๐ธ
Mundo Bueno
2026-07-19 00:01:31
(3 hours ago)
[ISILIA Protection v2.1] Tentative d'accรจs: /.env | Pays: ID | UA: Mozilla/5.0 (compatible; Amzn-Sea ...
show more
[ISILIA Protection v2.1] Tentative d'accรจs: /.env | Pays: ID | UA: Mozilla/5.0 (compatible; Amzn-SearchBot/1.0; +https://developer.amazon.com/support/amazonbot)
show less
Hacking
Web App Attack