π³π±
homeshowdomain.nl
2026-07-03 21:59:14
(2 hours ago)
Auto-ban: >3000 req/min op 2026-07-03
Web App Attack
SSH
Hacking
π¨π¦
internetworld
2026-07-03 18:26:08
(6 hours ago)
internetworld-prod-01 Fail2Ban ban. Jail=nginx-web-probe-iw. Sanitized automatic report from interne ...
show more
internetworld-prod-01 Fail2Ban ban. Jail=nginx-web-probe-iw. Sanitized automatic report from internetworld.ca server security monitoring.
show less
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 18:11:35
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 209.38.16.171 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.16.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 14:11:28.337264 2026] [security2:error] [pid 5063:tid 5063] [client 209.38.16.171:49072] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bigblue4.us"] [uri "/.git/config"] [unique_id "akf7ULCTBONUNckGZPl0LwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
paulshipley.com.au
2026-07-03 17:45:22
(6 hours ago)
[Sat Jul 04 03:45:22.000986 2026] [security2:error] [pid 676782] [client 209.38.16.171:46058] [clien ...
show more
[Sat Jul 04 03:45:22.000986 2026] [security2:error] [pid 676782] [client 209.38.16.171:46058] [client 209.38.16.171] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "indigi-print-merch.com.au"] [uri "/.git/config"] [unique_id "akf1MelyGSflVitU_8Hl3gAAAAI"]
...
show less
Web App Attack
π¦πΊ
paulshipley.com.au
2026-07-03 17:25:20
(7 hours ago)
[Sat Jul 04 03:25:20.479487 2026] [security2:error] [pid 667018] [client 209.38.16.171:58130] [clien ...
show more
[Sat Jul 04 03:25:20.479487 2026] [security2:error] [pid 667018] [client 209.38.16.171:58130] [client 209.38.16.171] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "indigi-print-merch.com.au"] [uri "/.git/config"] [unique_id "akfwgGVifw1W2pkUEd_rtQAAAAM"]
...
show less
Web App Attack
π¦πΊ
paulshipley.com.au
2026-07-03 16:25:13
(8 hours ago)
[Sat Jul 04 02:25:13.158898 2026] [security2:error] [pid 665803] [client 209.38.16.171:40798] [clien ...
show more
[Sat Jul 04 02:25:13.158898 2026] [security2:error] [pid 665803] [client 209.38.16.171:40798] [client 209.38.16.171] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "indigi-print-merch.com.au"] [uri "/.git/config"] [unique_id "akfiaa-ayl8Lt_SQjgeW4QAAABE"]
...
show less
Web App Attack
Anonymous
2026-07-03 16:06:03
(8 hours ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
πΊπΈ
Lezetho
2026-07-03 15:00:24
(9 hours ago)
DDoS, WebSpam, Web Attack, and Brute-force blocked by Cloudflare
DDoS Attack
Email Spam
Hacking
Brute-Force
π«π·
masterguru
2026-07-03 14:50:27
(9 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
π©πͺ
sdos.es
2026-07-03 14:14:42
(10 hours ago)
"Restricted File Access Attempt - Matched Data: /.git/ found within REQUEST_FILENAME: /.git/config"
Web App Attack
π¦πΊ
paulshipley.com.au
2026-07-03 12:14:17
(12 hours ago)
[Fri Jul 03 22:14:15.358570 2026] [security2:error] [pid 648036] [client 209.38.16.171:50490] [clien ...
show more
[Fri Jul 03 22:14:15.358570 2026] [security2:error] [pid 648036] [client 209.38.16.171:50490] [client 209.38.16.171] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "indigi-print-merch.com.au"] [uri "/.git/config"] [unique_id "akenl8xppBQrE7gj1rKvgwAAAAc"]
...
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 11:41:23
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 209.38.16.171 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.16.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 07:41:16.553293 2026] [security2:error] [pid 29126:tid 29126] [client 209.38.16.171:56248] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "visithastingsvillage.com"] [uri "/.git/config"] [unique_id "akef3G3KTxOhtdo60RgXNgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πͺ
cmbplf
2026-07-03 11:30:46
(12 hours ago)
1.252 requests with url.path *.git/*
1.198 requests with url.path */.git/config
Brute-Force
Bad Web Bot
π¬π§
consul.to
2026-07-03 11:21:21
(13 hours ago)
Web attack/malicious scanning detected
Web App Attack
π«π·
ELYAZ
2026-07-03 11:21:03
(13 hours ago)
(y3) Failed access -byebye- from 209.38.16.171 (AU/Australia/-): (CF_ENABLE)
Hacking