๐ณ๐ฑ
Roderic
2026-07-17 04:16:05
(6 hours ago)
(mod_security) mod_security triggered on hostname [redacted])
SQL Injection
๐ช๐ธ
alferez
2026-07-17 02:46:21
(8 hours ago)
Searching .(env|sql|zip|tar|rar) files
Hacking
Exploited Host
Web App Attack
๐ฉ๐ช
LRob
2026-07-17 00:36:06
(10 hours ago)
CrowdSec: crowdsecurity/http-sensitive-files | req: /.git/config | 5 distinct paths | UA: Mozilla/5. ...
show more
CrowdSec: crowdsecurity/http-sensitive-files | req: /.git/config | 5 distinct paths | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
show less
Hacking
๐ฉ๐ช
raph
2026-07-16 19:34:18
(15 hours ago)
[DOT FILES] crawler *.env*, .git*, .config*, etc.
Bad Web Bot
Web App Attack
๐ฉ๐ช
akasolutions.de
2026-07-16 01:50:29
(1 day ago)
(mod_security) mod_security triggered on hostname [redacted] 44.246.224.144 (US/United States/ec2-44 ...
show more
(mod_security) mod_security triggered on hostname [redacted] 44.246.224.144 (US/United States/ec2-44-246-224-144.us-west-2.compute.amazonaws.com)
show less
SQL Injection
๐ฉ๐ช
FeG Deutschland
2026-07-15 22:17:35
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247
Exploited Host
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-15 22:01:11
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-14.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
IndigoRidge
2026-07-15 17:15:10
(1 day ago)
44.246.224.144 - - [15/Jul/2026:13:15:07 -0400] "GET /.git/config HTTP/1.0" 404 5573 "-" "Mozilla/5. ...
show more
44.246.224.144 - - [15/Jul/2026:13:15:07 -0400] "GET /.git/config HTTP/1.0" 404 5573 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
44.246.224.144 - - [15/Jul/2026:13:15:08 -0400] "GET /.env HTTP/1.0" 404 5573 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
44.246.224.144 - - [15/Jul/2026:13:15:10 -0400] "GET /app/.env HTTP/1.0" 404 5573 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 17:03:51
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 44.246.224.144 (ec2-44-246-224-144.us-west-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 44.246.224.144 (ec2-44-246-224-144.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 13:03:43.613963 2026] [security2:error] [pid 2009:tid 2057] [client 44.246.224.144:45376] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "upstage-theatre.com"] [uri "/.git/config"] [unique_id "ale9b5pTXqU6GvCAtH_cXwAAAJM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 14:47:35
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 44.246.224.144 (ec2-44-246-224-144.us-west-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 44.246.224.144 (ec2-44-246-224-144.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 10:47:29.721251 2026] [security2:error] [pid 27583:tid 27583] [client 44.246.224.144:55954] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uppermotradingco.com"] [uri "/.git/config"] [unique_id "aledgaWxMt3tMobqi_ru_gAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
DocNetzwerk
2026-07-15 10:47:23
(2 days ago)
(mod_security) mod_security triggered on hostname [redacted] 44.246.224.144 (US/United States/ec2-44 ...
show more
(mod_security) mod_security triggered on hostname [redacted] 44.246.224.144 (US/United States/ec2-44-246-224-144.us-west-2.compute.amazonaws.com)
show less
SQL Injection
๐ณ๐ฑ
Site.eu
2026-07-15 07:38:12
(2 days ago)
Excessive 404/403 errors
Brute-Force
๐ณ๐ฑ
homeshowdomain.nl
2026-07-14 22:00:49
(2 days ago)
Auto-ban: >3000 req/min op 2026-07-14
Web App Attack
SSH
Hacking
๐ฎ๐น
VHosting
2026-07-14 17:45:03
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack