๐จ๐ญ
4server
2026-07-14 03:56:07
(35 minutes ago)
[TueJul1405:56:04.2570422026][security2:error][pid1278127:tid1278287][client5.83.214.166:0]ModSecuri ...
show more
[TueJul1405:56:04.2570422026][security2:error][pid1278127:tid1278287][client5.83.214.166:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"aidweb.ch.81-17-25-250.cpanel.site\"][uri\"/.git/HEAD\"][unique_id\"alWzVNHQuzNcIhgbiYz1-QAAAIA\"]
show less
Hacking
Web App Attack
๐ฌ๐ง
andypiper
2026-07-14 01:02:00
(3 hours ago)
CrowdSec ban for AbuseIPDB Top List
Brute-Force
Web App Attack
๐บ๐ธ
paulo.apoloni
2026-07-14 00:12:55
(4 hours ago)
5.83.214.166 - - [13/Jul/2026:21:12:52 -0300] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Maci ...
show more
5.83.214.166 - - [13/Jul/2026:21:12:52 -0300] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15"
5.83.214.166 - - [13/Jul/2026:21:12:52 -0300] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
5.83.214.166 - - [13/Jul/2026:21:12:54 -0300] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
5.83.214.166 - - [13/Jul/2026:21:12:54 -0300] "GET /.aws/credentials HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109"
5.83.214.166 - - [13/Jul/2026:21:12:54 -0300] "GET /backend/.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safa
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
Gwyneth Llewelyn
2026-07-13 23:12:49
(5 hours ago)
2026/07/14 00:12:44 [error] 2483228#2483228: *1067786 access forbidden by rule, client: 5.83.214.166 ...
show more
2026/07/14 00:12:44 [error] 2483228#2483228: *1067786 access forbidden by rule, client: 5.83.214.166, server: operadotejo.org, request: "GET /.env HTTP/2.0", host: "operadotejo.org"
5.83.214.166 - - [14/Jul/2026:00:12:44 +0100] "GET /.env HTTP/2.0" 403 95 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0"
2026/07/14 00:12:47 [error] 2483228#2483228: *1067789 access forbidden by rule, client: 5.83.214.166, server: operadotejo.org, request: "GET /api/.env HTTP/2.0", host: "operadotejo.org"
show less
Brute-Force
Web App Attack
๐ฌ๐ง
myintarweb
2026-07-13 20:01:27
(8 hours ago)
5.83.214.166 - - [13/Jul/2026:21:01:26 +0100] 443 "GET /.git/HEAD HTTP/1.1" 301 1702 "-" "Mozilla/5. ...
show more
5.83.214.166 - - [13/Jul/2026:21:01:26 +0100] 443 "GET /.git/HEAD HTTP/1.1" 301 1702 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-13 16:46:07
(11 hours ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ฆ
URAN Publishing Service
2026-07-13 12:11:25
(16 hours ago)
5.83.214.166 - - [13/Jul/2026:15:11:22 +0300] "GET /.env HTTP/1.1" 404 729 "-" "Mozilla/5.0 (Windows ...
show more
5.83.214.166 - - [13/Jul/2026:15:11:22 +0300] "GET /.env HTTP/1.1" 404 729 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109"
5.83.214.166 - - [13/Jul/2026:15:11:24 +0300] "GET /api/.env HTTP/1.1" 404 4717 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0"
...
show less
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-13 06:47:10
(21 hours ago)
(y3) Failed access -byebye- from 5.83.214.166 (GB/United Kingdom/-): (CF_ENABLE)
Hacking
๐ฉ๐ช
dbmwebdesign
2026-07-13 04:45:13
(23 hours ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-07-12 22:15:37
(1 day ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-07-12 18:11:48
(1 day ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-12 16:45:55
(1 day ago)
Try to access /.git/HEAD
Web App Attack
๐ฆ๐บ
AWW-Admin
2026-07-12 16:18:51
(1 day ago)
(mod_security) mod_security triggered on hostname [redacted] 5.83.214.166 (GB/United Kingdom/-)
SQL Injection
๐บ๐ธ
JustMeHere
2026-07-12 15:04:14
(1 day ago)
[Sun Jul 12 11:04:09.488138 2026] [security2:error] [pid 65617:tid 65666] [client 5.83.214.166:58332 ...
show more
[Sun Jul 12 11:04:09.488138 2026] [security2:error] [pid 65617:tid 65666] [client 5.83.214.166:58332] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.15.0"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "yorknation.com"] [uri "/.env"] [unique_id "alOs6byucT0AwNy2ji8WfwAAANU"]
...
show less
Web App Attack
๐บ๐ธ
Matthew Ping
2026-07-12 11:15:02
(1 day ago)
ModSecurity rule 949110 triggered on wp2. Web application attack blocked by CSF/LFD.
Web App Attack
Hacking