Anonymous
2026-07-18 23:06:33
(42 minutes ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: FR, Attack patterns: Word ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: FR, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing
show less
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-18 22:39:41
(1 hour ago)
Excessive multi-domain requests
Brute-Force
๐ธ๐ช
vaia.cloud
2026-07-18 22:33:01
(1 hour ago)
trying wp-login.php/xmlrpc.php 36 times in 1 minutes
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 21:09:47
(2 hours ago)
(mod_security) mod_security (id:210730) triggered by 34.155.156.245 (245.156.155.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210730) triggered by 34.155.156.245 (245.156.155.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 17:09:40.107038 2026] [security2:error] [pid 8837:tid 8837] [client 34.155.156.245:43282] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||unitoolsupplies.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "unitoolsupplies.com"] [uri "/z9x8c7v6b5-debug-trigger-unitoolsupplies.com"] [unique_id "alvrlH7-IApJn5gXVxoQQwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
IndigoRidge
2026-07-18 21:07:44
(2 hours ago)
34.155.156.245 - - [18/Jul/2026:17:07:42 -0400] "GET /.env HTTP/1.0" 403 5771 "-" "meta-externalagen ...
show more
34.155.156.245 - - [18/Jul/2026:17:07:42 -0400] "GET /.env HTTP/1.0" 403 5771 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)"
34.155.156.245 - - [18/Jul/2026:17:07:42 -0400] "GET /.git/config HTTP/1.0" 403 5771 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:[email protected] "
34.155.156.245 - - [18/Jul/2026:17:07:42 -0400] "GET /.aws/credentials HTTP/1.0" 404 51868 "-" "anthropic-ai"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 20:52:13
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.155.156.245 (245.156.155.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.155.156.245 (245.156.155.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 16:52:10.640860 2026] [security2:error] [pid 2791655:tid 2791655] [client 34.155.156.245:33964] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "unilabkenya.com"] [uri "/.git/config"] [unique_id "alvnei7v028nXEOEHJGYRAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
Ribeye375
2026-07-18 20:17:36
(3 hours ago)
HIPS web-exfiltration - Block tcp/0:65535
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-18 19:48:33
(4 hours ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 19:02:56
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.155.156.245 (245.156.155.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.155.156.245 (245.156.155.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 15:02:49.151921 2026] [security2:error] [pid 25037:tid 25037] [client 34.155.156.245:58648] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "unitedstarsaerospace.com"] [uri "/wp-config.php.old"] [unique_id "alvN2VWzZtRHapdYV8XPMQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
IndigoRidge
2026-07-18 19:00:25
(4 hours ago)
34.155.156.245 - - [18/Jul/2026:15:00:23 -0400] "GET /.env HTTP/1.0" 404 36346 "https://upcountryrem ...
show more
34.155.156.245 - - [18/Jul/2026:15:00:23 -0400] "GET /.env HTTP/1.0" 404 36346 "https://upcountryremembers.org/.env" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot"
34.155.156.245 - - [18/Jul/2026:15:00:24 -0400] "GET /config/.env HTTP/1.0" 404 36346 "https://upcountryremembers.org/config/.env" "Mozilla/5.0 (compatible; Diffbot/1.0; +https://diffbot.com)"
34.155.156.245 - - [18/Jul/2026:15:00:24 -0400] "GET /api/.env HTTP/1.0" 404 36346 "https://upcountryremembers.org/api/.env" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)"
...
show less
Web App Attack
Anonymous
2026-07-18 18:53:37
(4 hours ago)
34.155.156.245 - - [18/Jul/2026:13:53:32 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compa ...
show more
34.155.156.245 - - [18/Jul/2026:13:53:32 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" 34.155.156.245
34.155.156.245 - - [18/Jul/2026:13:53:32 -0500] "GET /.env.example HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compatible; GoogleOther; +http://www.google.com/bot.html)" 34.155.156.245
34.155.156.245 - - [18/Jul/2026:13:53:32 -0500] "GET /.env.local HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; +https://cohere.com)" 34.155.156.245
34.155.156.245 - - [18/Jul/2026:13:53:32 -0500] "GET /.env.production HTTP/1.1" 403 199 "-" "CCBot/2.0 (https://commoncrawl.org/faq/)" 34.155.156.245
34.155.156.245 - - [18/Jul/2026:13:53:32 -0500] "GET /.env.backup HTTP/1.1" 403 199 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)" 34.155.156.245
34.155.156.245 - - [18/Jul/2026:13:53:32 -0500] "GET /.env.old HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; +h
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-07-18 18:47:53
(5 hours ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ฎ๐น
VHosting
2026-07-18 18:45:03
(5 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
kosada.com
2026-07-18 18:38:40
(5 hours ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐ฟ๐ฆ
conure
2026-07-18 18:15:34
(5 hours ago)
csagent: score 21.7: 404 noise floor x7, secrets grab x2; 1 domain(s) in 0s
Web App Attack