๐ฒ๐พ
Rizzy
2026-07-19 09:15:38
(17 minutes ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ซ๐ท
masterguru
2026-07-19 08:17:06
(1 hour ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-195)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 07:39:26
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 34.32.109.138 (138.109.32.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.32.109.138 (138.109.32.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 19 03:39:22.950556 2026] [security2:error] [pid 18622:tid 18622] [client 34.32.109.138:32970] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zenithxen.com"] [uri "/.git/HEAD"] [unique_id "alx_Kg1XEq1FZPuGU7cILQAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 06:52:21
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.32.109.138 (138.109.32.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.32.109.138 (138.109.32.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 19 02:52:15.864453 2026] [security2:error] [pid 3273:tid 3307] [client 34.32.109.138:49720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zechesfinancialservices.com"] [uri "/.git/config"] [unique_id "alx0HxJ2dMlLMWfI3yYJ6gAAAVQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
ConsulHosting
2026-07-19 06:39:17
(2 hours ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-19 06:08:35
(3 hours ago)
(y3) Failed access -byebye- from 34.32.109.138 (DE/Germany/138.109.32.34.bc.googleusercontent.com): ...
show more
(y3) Failed access -byebye- from 34.32.109.138 (DE/Germany/138.109.32.34.bc.googleusercontent.com): (CF_ENABLE)
show less
Hacking
๐ฌ๐ง
Oakley
2026-07-19 05:52:46
(3 hours ago)
(confirmed_bot_sig) Confirmed bot
Hacking
Anonymous
2026-07-19 03:23:59
(6 hours ago)
34.32.109.138 - - [19/Jul/2026:05:23:59 +0200] "GET /dashboard HTTP/1.1" 404 184 "-" "Mozilla/5.0 (M ...
show more
34.32.109.138 - - [19/Jul/2026:05:23:59 +0200] "GET /dashboard HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/150.0.0.0 Safari/537.36 Edg/150.0.0.0"
34.32.109.138 - - [19/Jul/2026:05:23:59 +0200] "GET /.aws/config HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected] )"
34.32.109.138 - - [19/Jul/2026:05:23:59 +0200] "GET /app HTTP/1.1" 404 124 "-" "Mozilla/5.0 (iPad; CPU OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.7 Mobile/15E148 Safari/604.1"
34.32.109.138 - - [19/Jul/2026:05:23:59 +0200] "GET /z9x8c7v6b5-debug-trigger-zaepd.site HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; Applebot-Extended/0.1; +http://www.apple.com/go/applebot)"
34.32.109.138 - - [19/Jul/2026:05:23:59 +0200] "GET /.git/config HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; GoogleOther; +http://www.google.com/bot.html)"
34.32.109.138 - - [19/Jul/2026:05:23:59 +0200] "GET /wp-json
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
yvoictra
2026-07-19 03:17:00
(6 hours ago)
Bloqueado automรกticamente por CrowdSec. Escenario: crowdsecurity/http-probing
Web App Attack
๐ฉ๐ช
XICTRON
2026-07-19 01:35:05
(7 hours ago)
ModSecurity rule violation detected by Fail2Ban
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 00:45:40
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.32.109.138 (138.109.32.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.32.109.138 (138.109.32.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 20:45:37.228509 2026] [security2:error] [pid 25614:tid 25614] [client 34.32.109.138:58768] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "z-industrial.com"] [uri "/.git/HEAD"] [unique_id "alweMbOiA-C11RjHq4Up1wAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
WeCloudit-Anti-Abuse
2026-07-19 00:35:53
(8 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-probing
Web App Attack
Hacking
Anonymous
2026-07-19 00:00:26
(9 hours ago)
Multiple web server 400 error codes from same source ip
Web App Attack
Anonymous
2026-07-18 23:35:39
(9 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ช๐ธ
pipeline.es
2026-07-18 23:05:49
(10 hours ago)
Web scanning / probing for vulnerable paths | URL: /telescope/requests | Evidence: rhin.es 34.32.109 ...
show more
Web scanning / probing for vulnerable paths | URL: /telescope/requests | Evidence: rhin.es 34.32.109.138 - - [19/Jul/2026:01:05:13 +0200] \"GET /telescope/requests HTTP/1.1\" 404 216 \"-\" \"Mozilla/5.0 (compatible; Diffbot/1.0; +https://diffbot.com)\" GEOIP_COUNTRY_CODE=DE | ASN: GOOGLE-CLOUD-PLATFORM | Country: DE
show less
Port Scan
Web App Attack