๐ณ๐ด
tmiland
2025-09-21 01:17:45
(9 months ago)
(nginx_404) Dot directory Honeypot Trap 185.65.134.190 (NL/The Netherlands/-): 2 in the last 3600 se ...
show more
(nginx_404) Dot directory Honeypot Trap 185.65.134.190 (NL/The Netherlands/-): 2 in the last 3600 secs
show less
Brute-Force
Bad Web Bot
๐บ๐ธ
rdpguard.com
2025-09-18 19:48:17
(9 months ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
๐จ๐ญ
lufi
2025-09-18 02:31:37
(9 months ago)
2025-09-18 04:31:36 185.65.134.190: blacklistedPath: /.git/HEAD
...
Web Spam
Hacking
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-17 01:44:50
(9 months ago)
(mod_security) mod_security (id:210492) triggered by 185.65.134.190 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.65.134.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 16 21:44:44.615550 2025] [security2:error] [pid 32150:tid 32150] [client 185.65.134.190:60258] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "n3fjp.com"] [uri "/.git/HEAD"] [unique_id "aMoSjEhH-k8KAeqUdvy8hgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Vegascosmetics
2025-09-16 21:51:33
(9 months ago)
Kingcopy(AI-IDS): IP is wandering around the site and acting suspiciously.
Bad Web Bot
Anonymous
2025-09-16 20:50:16
(9 months ago)
suspicious request in access.log
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-16 20:20:18
(9 months ago)
(mod_security) mod_security (id:210492) triggered by 185.65.134.190 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.65.134.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 16 16:20:13.697086 2025] [security2:error] [pid 19914:tid 19914] [client 185.65.134.190:52605] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "farmers123.com"] [uri "/.git/HEAD"] [unique_id "aMnGfbF-TNYKCMfRnoDLPAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-09-16 13:49:19
(9 months ago)
[14:49:18] 4b: Exploit attempt against non-existent file - /.git/HEAD
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
london2038.com
2025-09-15 14:29:36
(9 months ago)
Probing for exploits
185.65.134.190 - - [15/Sep/2025:16:29:28 +0200] "GET /.git/HEAD HTTP/1.1" 422 0 ...
show more
Probing for exploits
185.65.134.190 - - [15/Sep/2025:16:29:28 +0200] "GET /.git/HEAD HTTP/1.1" 422 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36"
185.65.134.190 - - [15/Sep/2025:16:29:32 +0200] "GET /.git/HEAD HTTP/1.1" 422 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36"
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-15 09:28:15
(9 months ago)
(mod_security) mod_security (id:210492) triggered by 185.65.134.190 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.65.134.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 15 05:28:10.844458 2025] [security2:error] [pid 23820:tid 23820] [client 185.65.134.190:50536] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "businessvaluationapp.com"] [uri "/.git/HEAD"] [unique_id "aMfcKvvXiqdKv1N8qEyX0gAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Bedios GmbH
2025-09-15 07:45:38
(9 months ago)
Login credentials theft attempt
Hacking
๐ฌ๐ง
openstrike.co.uk
2025-09-15 05:13:14
(9 months ago)
2 attacks on VC URLs:
GET /.git/HEAD HTTP/1.1
Hacking
๐ฉ๐ช
Packets-Decreaser.NET
2025-09-15 02:05:53
(9 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐บ๐ธ
rdpguard.com
2025-09-15 01:08:16
(9 months ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
๐ฎ๐ฉ
Burayot
2025-09-14 23:36:10
(9 months ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 185.65.134.190 (NL/The Netherlands/ ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 185.65.134.190 (NL/The Netherlands/-): 2 in the last 3600 secs
show less
Web App Attack