π³π±
homeshowdomain.nl
2026-07-04 22:00:21
(3 days ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-03.
show less
Web App Attack
SSH
Hacking
π΅π±
miriks
2026-07-03 22:20:54
(4 days ago)
Automated scan detected: GET /.git/config
Port Scan
Web App Attack
π©πͺ
iNetWorker
2026-07-03 22:12:26
(4 days ago)
trolling for resource vulnerabilities
Web App Attack
π³π±
homeshowdomain.nl
2026-07-03 21:59:46
(4 days ago)
Auto-ban: >3000 req/min op 2026-07-03
Web App Attack
SSH
Hacking
πΊπΈ
mashamal
2026-07-03 21:56:05
(4 days ago)
Vulnerability Probe
...
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 21:32:19
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 136.66.239.75 (75.239.66.136.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 136.66.239.75 (75.239.66.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 17:32:11.487095 2026] [security2:error] [pid 3489:tid 3489] [client 136.66.239.75:51910] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.achari.com"] [uri "/.git/config"] [unique_id "akgqW7KEBESJ8-I6r9XN3gAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
2000cn.com.au
2026-07-03 21:15:18
(4 days ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
π©πͺ
IVski
2026-07-03 21:04:24
(4 days ago)
IVski WAF | Sensitive file probe detected - looking for .git
Port Scan
Brute-Force
Web App Attack
πΊπΈ
oralunal
2026-07-03 20:57:28
(4 days ago)
IP banned by Fail2Ban in jail suss access.log ah-app-1
...
Bad Web Bot
Web App Attack
π¨πΏ
ddw
2026-07-03 20:43:51
(4 days ago)
ModSecurity detection - Rules: 930130(Restricted File Access Attempt)
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 20:12:52
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 136.66.239.75 (75.239.66.136.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 136.66.239.75 (75.239.66.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 16:12:46.137192 2026] [security2:error] [pid 23841:tid 23841] [client 136.66.239.75:46192] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.whoownsmyhome.com"] [uri "/.git/config"] [unique_id "akgXvtnrTTr1mpLXbzV7JwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
4server
2026-07-03 20:11:12
(4 days ago)
[FriJul0322:11:05.5361472026][security2:error][pid3446971:tid3447252][client136.66.239.75:0]ModSecur ...
show more
[FriJul0322:11:05.5361472026][security2:error][pid3446971:tid3447252][client136.66.239.75:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"webdisk.whatsdecor.ch\"][uri\"/.git/config\"][unique_id\"akgXWUWcB_zhJSGn5UOQIgAAAUY\"]
show less
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 19:44:22
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 136.66.239.75 (75.239.66.136.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 136.66.239.75 (75.239.66.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 15:44:15.239421 2026] [security2:error] [pid 26603:tid 26603] [client 136.66.239.75:43612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.vetline.eu"] [uri "/.git/config"] [unique_id "akgRD1nS63vMDkwH15fWyQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-03 19:10:39
(4 days ago)
"GET /.git/config HTTP/1.1"
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 18:52:24
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 136.66.239.75 (75.239.66.136.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 136.66.239.75 (75.239.66.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 14:52:17.272324 2026] [security2:error] [pid 31656:tid 31656] [client 136.66.239.75:34078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.buggyshop.z-mgmt.com"] [uri "/.git/config"] [unique_id "akgE4dLCLxaa6vgbpu4wKgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack