πΊπ¦
Olexiy Backend
2026-06-30 10:58:33
(3 hours ago)
34.129.121.113
...
Bad Web Bot
Web App Attack
π§πͺ
cmbplf
2026-06-28 20:39:45
(1 day ago)
274 requests with url.path *.env
Brute-Force
Bad Web Bot
π«π·
Sklurk
2026-06-28 05:50:12
(2 days ago)
Web App Attack
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 01:55:35
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.129.121.113 (113.121.129.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.129.121.113 (113.121.129.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 21:55:30.163993 2026] [security2:error] [pid 32010:tid 32010] [client 34.129.121.113:42820] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.delgal.cs-mall.com"] [uri "/.git/config"] [unique_id "akB_Eqt8K84gPfWWEWYnWgAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³π±
Site.eu
2026-06-27 22:39:20
(2 days ago)
Excessive multi-domain requests
Brute-Force
2026-06-27 19:19:03
(2 days ago)
Bot / scanning and/or hacking attempts: GET /.env.prod HTTP/1.1, GET /.env.live HTTP/1.1, GET /.env1 ...
show more
Bot / scanning and/or hacking attempts: GET /.env.prod HTTP/1.1, GET /.env.live HTTP/1.1, GET /.env1 HTTP/1.1, GET /.env.bak HTTP/1.1, GET /.env.preprod HTTP/1.1, GET /.env.swp HTTP/1.1, GET /.env.dist HTTP/1.1, GET /.env.example HTTP/1.1, GET /.env.docker HTTP/1.1, GET /.env.uat HTTP/1.1, GET /.env~ HTTP/1.1, GET /.env.stage HTTP/1.1
show less
Hacking
Web App Attack
π©πͺ
big-cloud.nl
2026-06-26 03:45:36
(4 days ago)
Try to access /.git/config
Web App Attack
π³π±
Site.eu
2026-06-25 23:55:47
(4 days ago)
Excessive 404/403 errors
Brute-Force
π©πͺ
SwinT
2026-06-25 23:00:04
(4 days ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
π³π±
Site.eu
2026-06-25 07:21:25
(5 days ago)
Excessive multi-domain requests
Brute-Force
πΊπΈ
TPI-Abuse
2026-06-25 06:34:27
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.129.121.113 (113.121.129.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.129.121.113 (113.121.129.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 02:34:20.628027 2026] [security2:error] [pid 22133:tid 22133] [client 34.129.121.113:45142] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.davisllp.com"] [uri "/.git/config"] [unique_id "ajzL7NeWQlaPMCYYZpj5wAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
masterguru
2026-06-25 03:49:41
(5 days ago)
Remote Command Execution: Unix Command Injection (command without evasion). Pattern match "(?i)(?:b ...
show more
Remote Command Execution: Unix Command Injection (command without evasion). Pattern match "(?i)(?:b (932235-195)
show less
Hacking
π«π·
β¨
2026-06-25 03:12:16
(5 days ago)
Domain : daubings.co.uk
Rule : env
2026-06-25 00:28:36 ***hidden-privacy*** GET /.env.local - 443 - ...
show more
Domain : daubings.co.uk
Rule : env
2026-06-25 00:28:36 ***hidden-privacy*** GET /.env.local - 443 - 34.129.121.113 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 - www.daubings.co.uk 404 0 2 1416 295 272 - -
show less
Hacking
SQL Injection
πΊπΈ
TPI-Abuse
2026-06-25 01:52:24
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.129.121.113 (113.121.129.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.129.121.113 (113.121.129.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 21:52:16.149201 2026] [security2:error] [pid 15854:tid 15854] [client 34.129.121.113:39584] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.davehalverson.com.trancelucid.com"] [uri "/.git/config"] [unique_id "ajyJ0HLPEJn9n-77WBBR0gAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
LRob.fr
2026-06-24 04:00:03
(6 days ago)
Repeated 404 errors, blocked by Fail2ban in custom-404 jail
Bad Web Bot