๐ณ๐ฑ
homeshowdomain.nl
2026-06-30 21:59:21
(1 hour ago)
Auto-ban: >3000 req/min op 2026-06-30
Web App Attack
SSH
Hacking
๐บ๐ธ
MPL
2026-06-30 19:26:14
(4 hours ago)
tcp ports: 80,443 (77 or more attempts)
Port Scan
๐ฉ๐ช
Hary74656
2026-06-30 18:46:30
(5 hours ago)
[Tue Jun 30 20:46:23.133498 2026] [security2:error] [pid 479475:tid 479607] [client 45.13.119.139:55 ...
show more
[Tue Jun 30 20:46:23.133498 2026] [security2:error] [pid 479475:tid 479607] [client 45.13.119.139:55930] [client 45.13.119.139] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.git/" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /.git/head"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "dbl.aschi.at"] [uri "/.git/HEAD"] [unique_id "akQO_5LCH0A3FFW859v6BwAAA1w"]
[Tue Jun 30 20:46:23.133581 2026] [security2:error] [pid 479292:tid 479393] [client 45.13.119.139:55264] [client 45.13.119.139] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.git/" at REQUEST_FILENAME. [file "/usr/sh
...
show less
Web App Attack
๐บ๐ธ
kosada.com
2026-06-30 16:28:32
(7 hours ago)
Web vulnerability probing: /.env
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 14:16:57
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 45.13.119.139 (45.13.119.139.rev.dyjix.eu): 1 i ...
show more
(mod_security) mod_security (id:210492) triggered by 45.13.119.139 (45.13.119.139.rev.dyjix.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 10:16:54.166065 2026] [security2:error] [pid 29790:tid 29790] [client 45.13.119.139:42236] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidharrisgriffith.com"] [uri "/.env.bak"] [unique_id "akPP1hupzedbRKCo_REqPwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-30 14:05:51
(9 hours ago)
Abuse Detected (9)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 14:01:35
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 45.13.119.139 (45.13.119.139.rev.dyjix.eu): 1 i ...
show more
(mod_security) mod_security (id:210492) triggered by 45.13.119.139 (45.13.119.139.rev.dyjix.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 10:01:31.488091 2026] [security2:error] [pid 30846:tid 30853] [client 45.13.119.139:43192] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidchapa.com"] [uri "/.git/HEAD"] [unique_id "akPMO6I0L2kIDHrRrikb_gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-30 14:00:44
(9 hours ago)
BAD BOT - Detected and Blocked.. Matched phrase "ccbot" at REQUEST_HEADERS:User-Agent. (1100000-195)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-30 13:40:31
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 45.13.119.139 (45.13.119.139.rev.dyjix.eu): 1 i ...
show more
(mod_security) mod_security (id:210492) triggered by 45.13.119.139 (45.13.119.139.rev.dyjix.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 09:40:26.578843 2026] [security2:error] [pid 30420:tid 30420] [client 45.13.119.139:36530] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davesullivan.net"] [uri "/.env.production"] [unique_id "akPHSno0zPjvpwuBNuSHNQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
pixiekat
2026-06-30 13:20:51
(10 hours ago)
[Tue Jun 30 14:20:49.202290 2026] [authz_core:error] [pid 1918433:tid 1918497] [client 45.13.119.139 ...
show more
[Tue Jun 30 14:20:49.202290 2026] [authz_core:error] [pid 1918433:tid 1918497] [client 45.13.119.139:51678] AH01630: client denied by server configuration: /mnt/HC_Volume_105148208/vhosts/baikal/html/
[Tue Jun 30 14:20:50.422083 2026] [authz_core:error] [pid 1918503:tid 1918555] [client 45.13.119.139:51552] AH01630: client denied by server configuration: /mnt/HC_Volume_105148208/vhosts/baikal/html/.env.production
[Tue Jun 30 14:20:50.423787 2026] [authz_core:error] [pid 1918433:tid 1918499] [client 45.13.119.139:51678] AH01630: client denied by server configuration: /mnt/HC_Volume_105148208/vhosts/baikal/html/.env.local
[Tue Jun 30 14:20:50.425418 2026] [authz_core:error] [pid 1918433:tid 1918491] [client 45.13.119.139:51680] AH01630: client denied by server configuration: /mnt/HC_Volume_105148208/vhosts/baikal/html/.env
[Tue Jun 30 14:20:50.562619 2026] [authz_core:error] [pid 1918433:tid 1918500] [client 45.13.119.139:51680] AH01630: client denied by server configuration: /mnt/HC_Vol
...
show less
Brute-Force
๐ฉ๐ช
ger-stg-sifi1
2026-06-30 13:20:13
(10 hours ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
wsyq
2026-06-30 13:19:53
(10 hours ago)
Fail2Ban - \[NGINX\]40x-Forcing to access a restricted resource
...
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Savvii
2026-06-30 12:50:08
(10 hours ago)
15 attempts against mh-modsecurity-ban on pf221101
Brute-Force
Web App Attack
๐ช๐ธ
gnom4ik
2026-06-30 12:28:52
(11 hours ago)
ban-reviewer auto report; ip=45.13.119.139; scenario=crowdsecurity/http-sensitive-files; verdict=val ...
show more
ban-reviewer auto report; ip=45.13.119.139; scenario=crowdsecurity/http-sensitive-files; verdict=valid_ban; confidence=0.92; categories=14,15,18,22; active_decisions=3; lookback_decisions=3; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=ip_decision_count_high; ip_active_decision_count_high
show less
Port Scan
Hacking
Brute-Force
SSH
๐ฉ๐ช
DocNetzwerk
2026-06-30 11:25:22
(12 hours ago)
(mod_security) mod_security triggered on hostname [redacted] 45.13.119.139 (FR/France/45.13.119.139. ...
show more
(mod_security) mod_security triggered on hostname [redacted] 45.13.119.139 (FR/France/45.13.119.139.rev.dyjix.eu)
show less
SQL Injection