๐ณ๐ฑ
homeshowdomain.nl
2026-06-30 21:59:36
(12 hours ago)
Auto-ban: >3000 req/min op 2026-06-30
Web App Attack
SSH
Hacking
๐จ๐ด
adalbertoreyes.org
2026-06-30 17:24:51
(17 hours ago)
CategoryPortScan
Port Scan
๐ธ๐ฌ
serverutama
2026-06-30 13:24:41
(21 hours ago)
fail2ban[nginx-scanner]: scanning path sensitif (.git/.env/wp-config/secrets/dll).
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 11:04:53
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.c ...
show more
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 07:04:44.978214 2026] [security2:error] [pid 19398:tid 19398] [client 172.86.119.166:54582] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zenventures.co.uk"] [uri "/.git/config"] [unique_id "akOizOYxz6DmnoZuyQtFoQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xxkodedxx
2026-06-30 10:52:06
(23 hours ago)
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 1ร edge-block in 10 ...
show more
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 1ร edge-block in 10m window.
Origin: US / AS14956 RouterHosting LLC
Active: 10:51:21 UTC
Volume: 1 HTTP req
Probed: /.git/config
Status mix: 444ร1
UA: "Mozilla/5.0 (X11; Linux x86_64)"
Auto-banned 30d. zorvexus-banner.
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 10:15:51
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.c ...
show more
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 06:15:46.160958 2026] [security2:error] [pid 30882:tid 30882] [client 172.86.119.166:57888] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.saletrender.com.wholesalelivelobsters.com"] [uri "/.git/config"] [unique_id "akOXUscBleMnydw3wAzl2wAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-30 10:05:21
(1 day ago)
PSCSERV WPSCAN 172.86.119.166
Bad Web Bot
Web App Attack
๐บ๐ธ
Matthew Ping
2026-06-30 10:00:01
(1 day ago)
ModSecurity rule 949110 triggered on wp3. Web application attack blocked by CSF/LFD.
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-30 09:51:34
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.c ...
show more
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 05:51:30.246721 2026] [security2:error] [pid 25741:tid 25741] [client 172.86.119.166:43654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.minnig.net"] [uri "/.git/config"] [unique_id "akORopyT-kGXrcCNDVPtuAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 09:36:01
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.c ...
show more
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 05:35:58.252427 2026] [security2:error] [pid 18947:tid 18947] [client 172.86.119.166:46834] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jetzilla.com"] [uri "/.git/config"] [unique_id "akON_tt7RvFVxAcexf_ZbAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ut-addicted.com
2026-06-30 09:06:53
(1 day ago)
\[Tue Jun 30 11:06:52.410622 2026\] \[:error\] \[pid 13697:tid 139785695844096\] \[client 172.86.119 ...
show more
\[Tue Jun 30 11:06:52.410622 2026\] \[:error\] \[pid 13697:tid 139785695844096\] \[client 172.86.119.166:56080\] \[client 172.86.119.166\] ModSecurity: Access denied with code 403 \(phase 2\). Operator GE matched 5 at TX:anomaly_score. \[file "/usr/local/apache/modsecurity-owasp-latest/rules/REQUEST-949-BLOCKING-EVALUATION.conf"\] \[line "57"\] \[id "949110"\] \[msg "Inbound Anomaly Score Exceeded \(Total Score: 5\)"\] \[severity "CRITICAL"\] \[tag "application-multi"\] \[tag "language-multi"\] \[tag "platform-multi"\] \[tag "attack-generic"\] \[hostname "www.crx.it"\] \[uri "/.git/config"\] \[unique_id "akOHLO11Nk7otrYF6B7wXQAAANQ"\]
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 08:48:59
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.c ...
show more
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 04:48:55.317623 2026] [security2:error] [pid 20361:tid 20361] [client 172.86.119.166:57708] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.app.oxfordgliding.com"] [uri "/.git/config"] [unique_id "akOC90_SPruVMgKqT8rq6wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
4server
2026-06-30 08:34:35
(1 day ago)
[TueJun3010:34:30.4754572026][security2:error][pid4140180:tid4140318][client172.86.119.166:0]ModSecu ...
show more
[TueJun3010:34:30.4754572026][security2:error][pid4140180:tid4140318][client172.86.119.166:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"worldgoldfundltd.com.136-243-54-122.cpanel.site\"][uri\"/.git/config\"][unique_id\"akN_lrwVrfEBKgh9cT0BSwAAARY\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 08:33:33
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.c ...
show more
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 04:33:29.851189 2026] [security2:error] [pid 17583:tid 17583] [client 172.86.119.166:43024] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wokedreamer.com"] [uri "/.git/config"] [unique_id "akN_WWIp16VuZPFfcheJIQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 08:09:10
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.c ...
show more
(mod_security) mod_security (id:210492) triggered by 172.86.119.166 (166.119.86.172.static.cloudzy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 04:09:04.758892 2026] [security2:error] [pid 13741:tid 13741] [client 172.86.119.166:58642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web.kentculotta.com"] [uri "/.git/config"] [unique_id "akN5oLC2BjY6w_RU0WHNVwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack