๐ธ๐ฌ
securejdprop
2026-07-04 18:59:58
(2 weeks ago)
This IP was detected by CrowdSec triggering crowdsecurity/vpatch-git-config. WAF block: crowdsecurit ...
show more
This IP was detected by CrowdSec triggering crowdsecurity/vpatch-git-config. WAF block: crowdsecurity/vpatch-git-config from 141.11.62.50 (172.20.0.4)
show less
Hacking
๐ฌ๐ง
Axel
2026-07-04 18:05:03
(2 weeks ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/HEAD Se ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/HEAD Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐ฒ๐พ
Rizzy
2026-07-04 18:04:45
(2 weeks ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ง๐ช
cmbplf
2026-07-03 18:41:47
(2 weeks ago)
303 requests with url.path *.git/*
Brute-Force
Bad Web Bot
๐ซ๐ฎ
xyz.rip
2026-07-03 06:48:59
(2 weeks ago)
WAF Violation
...
Hacking
Web App Attack
Anonymous
2026-07-03 06:32:40
(2 weeks ago)
(caddyscan) Scanner path probe from 141.11.62.50 (NL/The Netherlands/-): 5 in the last 3600 secs; Po ...
show more
(caddyscan) Scanner path probe from 141.11.62.50 (NL/The Netherlands/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 141.11.62.50 - - [03/Jul/2026:06:32:32 +0000] "GET /.git/HEAD HTTP/1.1"
[REDACTED] 200 2627 141.11.62.50 - - [03/Jul/2026:06:32:32 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 141.11.62.50 - - [03/Jul/2026:06:32:34 +0000] "GET /.env.local HTTP/1.1"
[REDACTED] 200 2627 141.11.62.50 - - [03/Jul/2026:06:32:35 +0000] "GET /.env.production HTTP/1.1"
[REDACTED] 200 2627 141.11.62.50 - - [03/Jul/2026:06:32:35 +0000] "GET /.env.development HTTP/1.1"
show less
Port Scan
๐ณ๐ฑ
ReyhZhao
2026-07-03 05:03:52
(2 weeks ago)
Bunkerweb ModSecurity alert: Potential Remote Command Execution (RCE) detected. Unix shell code was ...
show more
Bunkerweb ModSecurity alert: Potential Remote Command Execution (RCE) detected. Unix shell code was identified within the request arguments, triggering a security rule designed to prevent application attacks.
show less
Brute-Force
๐ณ๐ฑ
tmiland
2026-07-03 00:23:57
(2 weeks ago)
(nginx_404) Dot directory Honeypot Trap 141.11.62.50 (-): 2 in the last 3600 secs; IP: 141.11.62.50; ...
show more
(nginx_404) Dot directory Honeypot Trap 141.11.62.50 (-): 2 in the last 3600 secs; IP: 141.11.62.50; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 141.11.62.50 - - [03/Jul/2026:02:23:56 +0200] "GET /.git/HEAD HTTP/1.1" 404 11090 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 141.11.62.50 - - [03/Jul/2026:02:23:56 +0200] "GET /.env HTTP/1.1" 404 11090 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0"
show less
Brute-Force
Anonymous
2026-07-02 19:47:45
(2 weeks ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-probing
Web App Attack
Hacking
๐ฌ๐ง
Mendip_Defender
2026-06-21 09:37:55
(4 weeks ago)
[21/Jun/2026:10:37:49.447914 +0100] ajew7VVFK4hQ5cBnYeBetQAAAIg 141.11.62.50 49198 188.246.206.60 70 ...
show more
[21/Jun/2026:10:37:49.447914 +0100] ajew7VVFK4hQ5cBnYeBetQAAAIg 141.11.62.50 49198 188.246.206.60 7081
[21/Jun/2026:10:37:49.450793 +0100] ajew7VVFK4hQ5cBnYeBetgAAAIk 141.11.62.50 49210 188.246.206.60 7081
...
show less
Brute-Force
๐บ๐ฆ
URAN Publishing Service
2026-06-21 08:47:01
(4 weeks ago)
141.11.62.50 - - [21/Jun/2026:11:46:57 +0300] "GET /.env HTTP/1.1" 404 741 "-" "Mozilla/5.0 (Windows ...
show more
141.11.62.50 - - [21/Jun/2026:11:46:57 +0300] "GET /.env HTTP/1.1" 404 741 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109"
141.11.62.50 - - [21/Jun/2026:11:47:01 +0300] "GET /backend/.env HTTP/1.1" 404 4701 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-06-21 07:20:36
(4 weeks ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
infra-monitor
2026-06-21 07:00:06
(4 weeks ago)
Automated ban via infra-monitor: suspicious-probe
Port Scan
๐ซ๐ท
breubit
2026-06-21 06:23:07
(4 weeks ago)
141.11.62.50 - - [21/Jun/2026:08:23:06 +0200] "GET /.git/HEAD HTTP/1.1" 404 10968 "-" "Mozilla/5.0 ( ...
show more
141.11.62.50 - - [21/Jun/2026:08:23:06 +0200] "GET /.git/HEAD HTTP/1.1" 404 10968 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109"
...
show less
Web App Attack
๐ฎ๐ช
Jim Keir
2026-06-21 05:25:44
(4 weeks ago)
2026-06-21 05:25:44 141.11.62.50 File scanning, blocking 141.11.62.50 for 5 minutes
Web App Attack