๐บ๐ธ
TPI-Abuse
2026-07-18 05:38:04
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.183.104.215 (ec2-35-183-104-215.ca-central-1 ...
show more
(mod_security) mod_security (id:210492) triggered by 35.183.104.215 (ec2-35-183-104-215.ca-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 01:37:59.099795 2026] [security2:error] [pid 8302:tid 8302] [client 35.183.104.215:40674] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sunshine-trust.com"] [uri "/.git/config"] [unique_id "alsRN1p92coPFZkJeYzYlAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-07-18 04:08:24
(1 day ago)
Scanning/Probing (13)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 19:59:48
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.183.104.215 (ec2-35-183-104-215.ca-central-1 ...
show more
(mod_security) mod_security (id:210492) triggered by 35.183.104.215 (ec2-35-183-104-215.ca-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 15:59:43.490827 2026] [security2:error] [pid 1474003:tid 1474017] [client 35.183.104.215:45860] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "royalfellows.com.aafm.us"] [uri "/.git/config"] [unique_id "alqJrzFb1FEbblHNVqHqDAAAAQg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ช
nekopavel
2026-07-17 04:46:36
(2 days ago)
35.183.104.215 - - [17/Jul/2026:06:46:34 +0200]"GET /.git/config HTTP/1.1" 404 530"-" uwu.so "Mozill ...
show more
35.183.104.215 - - [17/Jul/2026:06:46:34 +0200]"GET /.git/config HTTP/1.1" 404 530"-" uwu.so "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36""0.012" "0.000""Montreal" "CA"
35.183.104.215 - - [17/Jul/2026:06:46:35 +0200]"GET /.env HTTP/1.1" 404 530"-" uwu.so "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36""0.006" "0.000""Montreal" "CA"
35.183.104.215 - - [17/Jul/2026:06:46:35 +0200]"GET /.env.local HTTP/1.1" 404 530"-" uwu.so "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36""0.006" "0.000""Montreal" "CA"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-07-17 04:39:43
(2 days ago)
35.183.104.215 - - [17/Jul/2026:07:39:33 +0300] "GET /.env HTTP/1.1" 404 705 "-" "Mozilla/5.0 (X11; ...
show more
35.183.104.215 - - [17/Jul/2026:07:39:33 +0300] "GET /.env HTTP/1.1" 404 705 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
35.183.104.215 - - [17/Jul/2026:07:39:43 +0300] "GET /app/.env HTTP/1.1" 404 705 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 04:34:15
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 35.183.104.215 (ec2-35-183-104-215.ca-central-1 ...
show more
(mod_security) mod_security (id:210492) triggered by 35.183.104.215 (ec2-35-183-104-215.ca-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 00:34:11.988845 2026] [security2:error] [pid 255895:tid 255895] [client 35.183.104.215:41682] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uwsdiving.com"] [uri "/.git/config"] [unique_id "almwww0eBOAWcYxuH11PGAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-07-17 00:50:06
(2 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ฎ๐น
VHosting
2026-07-16 19:10:03
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ฉ๐ช
todix
2026-07-16 17:04:20
(2 days ago)
Web App Attack Exploid from 35.183.104.215
Web App Attack
Anonymous
2026-07-16 16:32:05
(2 days ago)
Multiple web server 400 error codes from same source ip
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-06 08:57:12
(1 week ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-03 02:22:37
(2 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-06-23 21:10:19
(3 weeks ago)
Try to access /.git/config
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-06-23 20:20:09
(3 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack