๐ง๐ท
Peregrine
2026-07-15 03:17:13
(8 hours ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.221.53 108.162.227.132 - - [12/Jul/2026:22:27:31 -0 ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.221.53 108.162.227.132 - - [12/Jul/2026:22:27:31 -0300] "GET /.git/config HTTP/1.1" 404 414
8.222.221.53 172.68.164.79 - - [12/Jul/2026:22:27:32 -0300] "GET /.env HTTP/1.1" 404 414
show less
Bad Web Bot
Anonymous
2026-07-14 16:32:04
(19 hours ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐ง๐ท
Peregrine
2026-07-14 03:17:10
(1 day ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.221.53 108.162.227.132 - - [12/Jul/2026:22:27:31 -0 ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.221.53 108.162.227.132 - - [12/Jul/2026:22:27:31 -0300] "GET /.git/config HTTP/1.1" 404 414
8.222.221.53 172.68.164.79 - - [12/Jul/2026:22:27:32 -0300] "GET /.env HTTP/1.1" 404 414
show less
Bad Web Bot
๐ท๐ด
INTEQ
2026-07-13 04:50:10
(2 days ago)
Web attack from 8.222.221.53
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 04:23:28
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.221.53 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.221.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 00:23:20.471132 2026] [security2:error] [pid 26821:tid 26821] [client 8.222.221.53:41736] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oposicionesyconcursos.es"] [uri "/.env"] [unique_id "alRoOHjGBYJbQIWJGw1KpAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 04:12:51
(2 days ago)
8.222.221.53 - - [13/Jul/2026:06:12:46 +0200] "GET /.git/config HTTP/1.1" 403 117 "-" "Mozilla/5.0 ( ...
show more
8.222.221.53 - - [13/Jul/2026:06:12:46 +0200] "GET /.git/config HTTP/1.1" 403 117 "-" "Mozilla/5.0 (Macintosh, Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Safari/605.1.15"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 03:39:06
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.221.53 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.221.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:39:01.514160 2026] [security2:error] [pid 23795:tid 23795] [client 8.222.221.53:60498] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ichoosethelight.org"] [uri "/.env"] [unique_id "alRd1YTPPmu1qVhEtcBBHAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 03:23:09
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.221.53 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.221.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:23:03.641432 2026] [security2:error] [pid 25315:tid 25315] [client 8.222.221.53:49428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fruitsinthedesert.com"] [uri "/.git/config"] [unique_id "alRaF-VuiK4bthEgCpkwwwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-13 03:13:46
(2 days ago)
Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
๐ซ๐ท
โจ
2026-07-13 02:49:14
(2 days ago)
Domain : redirect.netenergy.uk
Rule : env
2026-07-13 02:47:23 217.194.210.152 GET /.env - 443 - 8.22 ...
show more
Domain : redirect.netenergy.uk
Rule : env
2026-07-13 02:47:23 217.194.210.152 GET /.env - 443 - 8.222.221.53 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.182 Safari/537.36 - brownfoot.com 404 0 2 1550 237 205 - -
show less
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-13 02:41:22
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.221.53 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.221.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 22:41:13.450424 2026] [security2:error] [pid 4720:tid 4720] [client 8.222.221.53:48214] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boatpeople.org"] [uri "/.env"] [unique_id "alRQSbYlema6FUV_P0_jcwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ท
Peregrine
2026-07-13 01:27:34
(2 days ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.221.53 108.162.227.132 - - [12/Jul/2026:22:27:31 -0 ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.221.53 108.162.227.132 - - [12/Jul/2026:22:27:31 -0300] "GET /.git/config HTTP/1.1" 404 414
8.222.221.53 172.68.164.79 - - [12/Jul/2026:22:27:32 -0300] "GET /.env HTTP/1.1" 404 414
show less
Bad Web Bot
๐ง๐ช
voormedia
2026-07-13 01:02:24
(2 days ago)
Accessed trap at '/.git/config'
Web App Attack