๐ณ๐ฑ
WeCloudit-Anti-Abuse
2026-07-18 20:12:43
(13 minutes ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐ณ๐ฑ
e.fierstra
2026-07-18 19:20:05
(1 hour ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ช๐ธ
masterguru
2026-07-18 19:12:56
(1 hour ago)
Inbound Anomaly Score Exceeded (Total Score: 5). Operator GE matched 5 at TX:anomaly_score. (949110- ...
show more
Inbound Anomaly Score Exceeded (Total Score: 5). Operator GE matched 5 at TX:anomaly_score. (949110-122)
show less
Hacking
๐ฉ๐ช
pigro
2026-07-18 18:38:44
(1 hour ago)
34.32.131.143 - - [18/Jul/2026:20:38:44 +0200] "GET /api/.env HTTP/2.0" 301 0 "-" "Mozilla/5.0 Apple ...
show more
34.32.131.143 - - [18/Jul/2026:20:38:44 +0200] "GET /api/.env HTTP/2.0" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:[email protected] "
34.32.131.143 - - [18/Jul/2026:20:38:44 +0200] "GET /api/.env/ HTTP/2.0" 404 2285 "https://pigro.site/api/.env" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:[email protected] "
...
show less
Web App Attack
๐ฉ๐ช
Trueforce Threat Report
2026-07-18 16:45:16
(3 hours ago)
Automated report, trolling for resource vulnerabilities
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-18 16:16:37
(4 hours ago)
URL file extension is restricted by policy. String match within ".asa/ .asax/ .ascx/ .axd/ .backup/ ...
show more
URL file extension is restricted by policy. String match within ".asa/ .asax/ .ascx/ .axd/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/" at TX:extension. (920440-131)
show less
Hacking
๐ฉ๐ช
FeG Deutschland
2026-07-18 14:57:57
(5 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247
Exploited Host
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-18 14:45:34
(5 hours ago)
Try to access /.git/HEAD
Web App Attack
๐ณ๐ฑ
GabrielJST
2026-07-18 14:25:40
(6 hours ago)
(mod_security) mod_security triggered on hostname [redacted] 34.32.131.143 (143.131.32.34.bc.googleu ...
show more
(mod_security) mod_security triggered on hostname [redacted] 34.32.131.143 (143.131.32.34.bc.googleusercontent.com): (CF_ENABLE)
show less
SQL Injection
Anonymous
2026-07-18 14:11:29
(6 hours ago)
34.32.131.143 - - [18/Jul/2026:16:11:13 +0200] "GET /.aws/config HTTP/2.0" 403 272 "-" "Mozilla/5.0 ...
show more
34.32.131.143 - - [18/Jul/2026:16:11:13 +0200] "GET /.aws/config HTTP/2.0" 403 272 "-" "Mozilla/5.0 (compatible; Amzn-SearchBot/1.0; +https://developer.amazon.com/support/amazonbot)"
show less
Web Spam
Blog Spam
Brute-Force
Web App Attack
๐จ๐ญ
Origon
2026-07-18 14:08:35
(6 hours ago)
http-probing - IP: 34.32.131.143 - time="2026-07-18T16:08:35+02:00" level=info msg="(555f66b4f6a745 ...
show more
http-probing - IP: 34.32.131.143 - time="2026-07-18T16:08:35+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-probing by ip 34.32.131.143 (NL/396982) : 4h ban on Ip 34.32.131.143" module=db
show less
Web App Attack
๐ฉ๐ช
Blexyel
2026-07-18 12:55:06
(7 hours ago)
34.32.131.143 - - [18/Jul/2026:14:55:05 +0200] "GET /.git/config HTTP/1.1" 404 435 "-" "Mozilla/5.0 ...
show more
34.32.131.143 - - [18/Jul/2026:14:55:05 +0200] "GET /.git/config HTTP/1.1" 404 435 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:[email protected] " "share.fomx.gay"
...
show less
Brute-Force
Web App Attack
๐ซ๐ท
masterguru
2026-07-18 12:30:19
(7 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-197)
Hacking
Web App Attack
๐ท๐บ
DZBOT
2026-07-18 12:18:52
(8 hours ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 12:04:54
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.32.131.143 (143.131.32.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.32.131.143 (143.131.32.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 08:04:49.861971 2026] [security2:error] [pid 27954:tid 27954] [client 34.32.131.143:50612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dbanetwork.net"] [uri "/.git/HEAD"] [unique_id "altr4ZLee76YYu_adwx3QQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack