Anonymous
2026-07-17 05:08:57
(10 hours ago)
(mod_security) mod_security triggered on hostname [redacted] 35.182.115.35 (CA/Canada/ec2-35-182-115 ...
show more
(mod_security) mod_security triggered on hostname [redacted] 35.182.115.35 (CA/Canada/ec2-35-182-115-35.ca-central-1.compute.amazonaws.com)
show less
SQL Injection
๐ณ๐ฑ
Site.eu
2026-07-17 04:07:09
(11 hours ago)
Excessive 404/403 errors
Brute-Force
๐ช๐ธ
yvoictra
2026-07-17 02:59:33
(12 hours ago)
35.182.115.35 - - [17/Jul/2026:04:59:32 +0200] "GET /.git/config HTTP/1.1" 404 1368 "-" "Mozilla/5.0 ...
show more
35.182.115.35 - - [17/Jul/2026:04:59:32 +0200] "GET /.git/config HTTP/1.1" 404 1368 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.182.115.35 - - [17/Jul/2026:04:59:33 +0200] "GET /.env HTTP/1.1" 404 1368 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.182.115.35 - - [17/Jul/2026:04:59:33 +0200] "GET /.env.local HTTP/1.1" 404 1368 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.182.115.35 - - [17/Jul/2026:04:59:33 +0200] "GET /.env.production HTTP/1.1" 404 1368 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.182.115.35 - - [17/Jul/2026:04:59:33 +0200] "GET /.env.staging HTTP/1.1" 404 1368 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
...
show less
Brute-Force
Web App Attack
๐ฉ๐ช
mr.joecat
2026-07-17 02:57:11
(12 hours ago)
35.182.115.35 - - [17/Jul/2026:04:57:09 +0200] "GET /.git/config HTTP/1.1" 404 4269 "-" "Mozilla/5.0 ...
show more
35.182.115.35 - - [17/Jul/2026:04:57:09 +0200] "GET /.git/config HTTP/1.1" 404 4269 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.182.115.35 - - [17/Jul/2026:04:57:09 +0200] "GET /.env HTTP/1.1" 404 4282 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.182.115.35 - - [17/Jul/2026:04:57:10 +0200] "GET /.env.local HTTP/1.1" 404 4187 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.182.115.35 - - [17/Jul/2026:04:57:10 +0200] "GET /.env.production HTTP/1.1" 404 4187 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.182.115.35 - - [17/Jul/2026:04:57:10 +0200] "GET /.env.staging HTTP/1.1" 404 4183 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/5
...
show less
Web App Attack
๐จ๐ฆ
polycoda
2026-07-17 01:32:13
(14 hours ago)
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - โ๏ธ Configuration File Access (Non Decay-Based ...
show more
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - โ๏ธ Configuration File Access (Non Decay-Based)
show less
Hacking
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-17 01:20:04
(14 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 00:40:34
(14 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.182.115.35 (ec2-35-182-115-35.ca-central-1.c ...
show more
(mod_security) mod_security (id:210492) triggered by 35.182.115.35 (ec2-35-182-115-35.ca-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:40:29.376218 2026] [security2:error] [pid 30136:tid 30136] [client 35.182.115.35:58644] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kokr.pellman-world.com"] [uri "/.git/config"] [unique_id "all5_VkVdpEVGhRNB7_higAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 23:33:23
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.182.115.35 (ec2-35-182-115-35.ca-central-1.c ...
show more
(mod_security) mod_security (id:210492) triggered by 35.182.115.35 (ec2-35-182-115-35.ca-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 19:33:16.909462 2026] [security2:error] [pid 26058:tid 26061] [client 35.182.115.35:45678] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.truthjusticecommission.com"] [uri "/.git/config"] [unique_id "allqPIRiUcvJUKWrJOOc-wAAAIE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-04-08 22:03:14
(3 months ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-04-07.
show less
Web App Attack
SSH
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-04-07 22:02:29
(3 months ago)
Auto-ban: >3000 req/min op 2026-04-07
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-07 11:23:39
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 35.182.115.35 (ec2-35-182-115-35.ca-central-1.c ...
show more
(mod_security) mod_security (id:210492) triggered by 35.182.115.35 (ec2-35-182-115-35.ca-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 07:23:33.459670 2026] [security2:error] [pid 1222132:tid 1222132] [client 35.182.115.35:58176] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marjorierosenberg.com"] [uri "/.env"] [unique_id "adTpNeDCFt-A14JUb2D1ggAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-04-07 11:21:19
(3 months ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ช๐ธ
masterguru
2026-04-07 11:05:41
(3 months ago)
Restricted File Access Attempt. Matched phrase "/.env" at REQUEST_FILENAME. (930130-122)
Hacking
Web App Attack
Anonymous
2026-04-07 10:33:05
(3 months ago)
(mod_security) mod_security triggered on hostname [redacted] 35.182.115.35 (CA/Canada/ec2-35-182-115 ...
show more
(mod_security) mod_security triggered on hostname [redacted] 35.182.115.35 (CA/Canada/ec2-35-182-115-35.ca-central-1.compute.amazonaws.com)
show less
SQL Injection
๐ฎ๐น
VHosting
2026-04-07 10:20:03
(3 months ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack