๐ฉ๐ช
raph
2026-07-01 14:16:03
(33 minutes ago)
[DOT FILES] crawler *.env*, .git*, .config*, etc.
Bad Web Bot
Web App Attack
๐ฉ๐ช
netclix.gr
2026-07-01 13:23:44
(1 hour ago)
(bot_kill_mega) Aggressive Bot Blocked: Go-http-client 81.171.72.135 (FR/France/-): 1 in the last 46 ...
show more
(bot_kill_mega) Aggressive Bot Blocked: Go-http-client 81.171.72.135 (FR/France/-): 1 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 81.171.72.135 - - [01/Jul/2026:16:23:41 +0300] "GET /storage/logs/laravel.log HTTP/1.1" 403 146 "-" "Go-http-client/1.1"
show less
Port Scan
Anonymous
2026-07-01 11:56:50
(2 hours ago)
(mod_security) mod_security triggered on hostname [redacted] 81.171.72.135 (FR/France/-)
SQL Injection
Anonymous
2026-07-01 10:03:42
(4 hours ago)
(caddyscan) Scanner path probe from 81.171.72.135 (NL/The Netherlands/-): 5 in the last 3600 secs; P ...
show more
(caddyscan) Scanner path probe from 81.171.72.135 (NL/The Netherlands/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 81.171.72.135 - - [01/Jul/2026:10:03:37 +0000] "GET /wp-config.php HTTP/1.1"
[REDACTED] 200 2627 81.171.72.135 - - [01/Jul/2026:10:03:37 +0000] "GET /actuator/heapdump HTTP/1.1"
[REDACTED] 200 2627 81.171.72.135 - - [01/Jul/2026:10:03:37 +0000] "GET /actuator/zzcanary-934da680ebfd33f HTTP/1.1"
[REDACTED] 200 2627 81.171.72.135 - - [01/Jul/2026:10:03:37 +0000] "GET /.env.production HTTP/1.1"
[REDACTED] 200 2627 81.171.72.135 - - [01/Jul/2026:10:03:37 +0000] "GET /wp-admin/setup-config.php HTTP/1.1"
show less
Port Scan
๐ณ๐ฑ
Savvii
2026-07-01 09:53:04
(4 hours ago)
20 attempts against mh-misbehave-ban on eris
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
dwmp
2026-07-01 09:46:23
(5 hours ago)
Url probing: /entrance
Web App Attack
๐ต๐ฑ
lns.bz
2026-07-01 08:05:52
(6 hours ago)
Web app attack [PL.Lu]
Exploited Host
Web App Attack
๐ฉ๐ช
et-a_network
2026-07-01 07:09:46
(7 hours ago)
81.171.72.135 - - [01/Jul/2026:07:09:45 +0000] "GET /config.php HTTP/1.1" 404 53 "-" "Go-http-client ...
show more
81.171.72.135 - - [01/Jul/2026:07:09:45 +0000] "GET /config.php HTTP/1.1" 404 53 "-" "Go-http-client/1.1" host=e-pruef.et-a.eu
81.171.72.135 - - [01/Jul/2026:07:09:45 +0000] "GET /phpinfo.php HTTP/1.1" 404 53 "-" "Go-http-client/1.1" host=e-pruef.et-a.eu
81.171.72.135 - - [01/Jul/2026:07:09:45 +0000] "GET /.git/HEAD HTTP/1.1" 404 53 "-" "Go-http-client/1.1" host=e-pruef.et-a.eu
81.171.72.135 - - [01/Jul/2026:07:09:45 +0000] "GET /.env HTTP/1.1" 404 53 "-" "Go-http-client/1.1" host=e-pruef.et-a.eu
81.171.72.135 - - [01/Jul/2026:07:09:46 +0000] "GET /wp-admin/setup-config.php HTTP/1.1" 404 53 "-" "Go-http-client/1.1" host=e-pruef.et-a.eu
...
show less
Bad Web Bot
Web App Attack
Anonymous
2026-07-01 06:44:43
(8 hours ago)
(mod_security) mod_security triggered on hostname [redacted])
SQL Injection
๐ซ๐ฎ
oh.mg
2026-07-01 06:28:09
(8 hours ago)
81.171.72.135 - - [01/Jul/2026:08:28:09 +0200] "GET /database.sql HTTP/1.1" 403 501 "-" "Go-http-cli ...
show more
81.171.72.135 - - [01/Jul/2026:08:28:09 +0200] "GET /database.sql HTTP/1.1" 403 501 "-" "Go-http-client/1.1"
81.171.72.135 - - [01/Jul/2026:08:28:09 +0200] "GET /storage/logs/laravel.log HTTP/1.1" 403 501 "-" "Go-http-client/1.1"
81.171.72.135 - - [01/Jul/2026:08:28:09 +0200] "GET /.ssh/id_ed25519 HTTP/1.1" 403 501 "-" "Go-http-client/1.1"
81.171.72.135 - - [01/Jul/2026:08:28:09 +0200] "GET /.svn/wc.db HTTP/1.1" 403 501 "-" "Go-http-client/1.1"
81.171.72.135 - - [01/Jul/2026:08:28:09 +0200] "GET /database_backup.sql HTTP/1.1" 403 501 "-" "Go-http-client/1.1"
...
show less
Bad Web Bot
Web App Attack
Anonymous
2026-07-01 06:26:44
(8 hours ago)
Attempted search for exploits and vulnerabilities detected by fail2ban
...
Port Scan
Brute-Force
Anonymous
2026-07-01 05:52:44
(8 hours ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-01 05:50:28
(8 hours ago)
Attempts against non-existent wp-login
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 05:41:09
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 81.171.72.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 81.171.72.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 01:40:59.106507 2026] [security2:error] [pid 29909:tid 29978] [client 81.171.72.135:47742] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "metabotic.com"] [uri "/.svn/wc.db"] [unique_id "akSoa3hAMQ9LvjcKel8E1gAAAMw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Mendip_Defender
2026-07-01 05:37:13
(9 hours ago)
[01/Jul/2026:06:37:06.305078 +0100] akSngjyniYWgZXlB_yXY2gAAAAA 81.171.72.135 54660 188.246.206.60 7 ...
show more
[01/Jul/2026:06:37:06.305078 +0100] akSngjyniYWgZXlB_yXY2gAAAAA 81.171.72.135 54660 188.246.206.60 7081
[01/Jul/2026:06:37:06.357302 +0100] akSngjyniYWgZXlB_yXY3AAAABE 81.171.72.135 54684 188.246.206.60 7081
...
show less
Brute-Force