๐ฉ๐ช
Blexyel
2026-07-12 09:49:51
(15 minutes ago)
82.39.206.121 - - [12/Jul/2026:11:49:51 +0200] "GET /.git/config HTTP/1.1" 404 120 "-" "Mozilla/5.0 ...
show more
82.39.206.121 - - [12/Jul/2026:11:49:51 +0200] "GET /.git/config HTTP/1.1" 404 120 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0"
...
show less
Brute-Force
Web App Attack
Anonymous
2026-07-12 09:48:06
(16 minutes ago)
(caddyscan) Scanner path probe from 82.39.206.121 (PL/Poland/-): 5 in the last 3600 secs; Ports: *; ...
show more
(caddyscan) Scanner path probe from 82.39.206.121 (PL/Poland/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:09:47:59 +0000] "GET /.git/HEAD HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:09:48:01 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:09:48:05 +0000] "GET /.aws/credentials HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:09:48:05 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:09:48:05 +0000] "GET /backend/.env HTTP/1.1"
show less
Port Scan
๐บ๐ธ
mashamal
2026-07-12 08:51:29
(1 hour ago)
Vulnerability Probe
...
Web App Attack
Anonymous
2026-07-12 08:36:01
(1 hour ago)
(caddyscan) Scanner path probe from 82.39.206.121 (PL/Poland/-): 5 in the last 3600 secs; Ports: *; ...
show more
(caddyscan) Scanner path probe from 82.39.206.121 (PL/Poland/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:08:35:53 +0000] "GET /.git/HEAD HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:08:35:55 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:08:35:58 +0000] "GET /.env.production HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:08:35:58 +0000] "GET /.env.development HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:08:35:58 +0000] "GET /.env.local HTTP/1.1"
show less
Port Scan
๐บ๐ธ
itsnixk
2026-07-12 08:03:22
(2 hours ago)
(mod_security) mod_security (id:930130) triggered by 82.39.206.121 (PL/Poland/-): 1 in the last 3600 ...
show more
(mod_security) mod_security (id:930130) triggered by 82.39.206.121 (PL/Poland/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jul 12 04:03:20.625340 2026] [security2:error] [pid 70105:tid 70459] [client 82.39.206.121:57136] ModSecurity: Access denied with code 406 (phase 1). Matched phrase ".git/" at REQUEST_FILENAME. [file "/etc/modsecurity.d/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "150"] [id "930130"] [msg "Restricted File Access Attempt"] [redacted] [severity "CRITICAL"] [ver "OWASP_CRS/4.27.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/ATTACK-LFI"] [tag "capec/1000/255/153/126"] [redacted] [uri "/.git/config"] [unique_id "alNKSCUKB-G9oLiDxo9qCgAAAJk"]
show less
Port Scan
๐ณ๐ฑ
e.fierstra
2026-07-12 07:36:19
(2 hours ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
Anonymous
2026-07-12 07:01:36
(3 hours ago)
(caddyscan) Scanner path probe from 82.39.206.121 (PL/Poland/-): 5 in the last 3600 secs; Ports: *; ...
show more
(caddyscan) Scanner path probe from 82.39.206.121 (PL/Poland/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:07:01:28 +0000] "GET /.git/HEAD HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:07:01:30 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:07:01:32 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:07:01:33 +0000] "GET /.env.local HTTP/1.1"
[REDACTED] 200 2627 82.39.206.121 - - [12/Jul/2026:07:01:34 +0000] "GET /api/.env HTTP/1.1"
show less
Port Scan
Anonymous
2026-07-12 05:51:02
(4 hours ago)
Unauthorized SSH login attempts
Brute-Force
SSH
๐ณ๐ฑ
WeCloudit-Anti-Abuse
2026-07-11 15:42:34
(18 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-11 08:03:59
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 82.39.206.121 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.39.206.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 04:03:55.409165 2026] [security2:error] [pid 4077560:tid 4077560] [client 82.39.206.121:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.dentguyvt.com"] [uri "/.git/HEAD"] [unique_id "alH46wZe2dkh84P9JnY4XwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฟ๐ฆ
antman
2026-07-11 06:37:14
(1 day ago)
csagent: score 20.0: secrets grab x2; 1 domain(s) in 0s
Web App Attack
Anonymous
2026-07-10 19:39:46
(1 day ago)
82.39.206.121 - - [10/Jul/2026:21:39:43 +0200] "GET /.env HTTP/1.1" 404 435 "-" "Mozilla/5.0 (Macint ...
show more
82.39.206.121 - - [10/Jul/2026:21:39:43 +0200] "GET /.env HTTP/1.1" 404 435 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
82.39.206.121 - - [10/Jul/2026:21:39:43 +0200] "GET /.env HTTP/1.1" 404 240 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
82.39.206.121 - - [10/Jul/2026:21:39:45 +0200] "GET /.aws/credentials HTTP/1.1" 404 435 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0"
82.39.206.121 - - [10/Jul/2026:21:39:45 +0200] "GET /.aws/credentials HTTP/1.1" 404 240 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0"
82.39.206.121 - - [10/Jul/2026:21:39:45 +0200] "GET /api/.env HTTP/1.1" 404 435 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0"
82.39.206.121 - - [10/Jul/2026:21:39:45 +0200] "GET /api/.env HTTP/1.1" 404 2
...
show less
Bad Web Bot
Web App Attack
๐ซ๐ท
lindi
2026-07-10 19:15:17
(1 day ago)
Probing for resource vulnerabilities
...
Web Spam
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
๐ง๐ท
Halux
2026-07-10 18:47:01
(1 day ago)
82.39.206.121 Probing protected path or service
Web App Attack
๐ฎ๐น
VHosting
2026-07-10 09:30:03
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack