๐ณ๐ฑ
homeshowdomain.nl
2026-07-03 21:59:04
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-02.
show less
Web App Attack
SSH
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-07-02 22:00:44
(2 weeks ago)
Auto-ban: >3000 req/min op 2026-07-02
Web App Attack
SSH
Hacking
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-02 17:07:02
(2 weeks ago)
Fail2Ban - [RECIDIVE]Repeat offender across multiple jails on recidive ... [mx01,mx02]
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-02 16:09:01
(2 weeks ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx02,mx03,w ...
show more
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx02,mx03,wa01,wa02]
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
4server
2026-07-02 14:57:00
(2 weeks ago)
[ThuJul0216:56:58.5448992026][security2:error][pid3097175:tid3097235][client209.38.92.88:0]ModSecuri ...
show more
[ThuJul0216:56:58.5448992026][security2:error][pid3097175:tid3097235][client209.38.92.88:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"globalhorizon.ch\"][uri\"/.git/config\"][unique_id\"akZ8OrJguWyKSULvnJOhsgAAAFg\"]
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
2026-07-02 14:32:03
(2 weeks ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-02 13:50:25
(2 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-07-02 13:15:57
(2 weeks ago)
Web vulnerability probing: /.git/config
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 12:29:38
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 08:29:30.677088 2026] [security2:error] [pid 24929:tid 24929] [client 209.38.92.88:54682] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "desarrollosdecolima.com"] [uri "/.git/config"] [unique_id "akZZqmSnIG_b48JXDWB98QAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 11:23:35
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:23:30.657886 2026] [security2:error] [pid 32212:tid 32212] [client 209.38.92.88:57082] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "babycatkhalil.com"] [uri "/.git/config"] [unique_id "akZKMkwPQYkkY2WfcpVALAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
dwmosaics
2026-07-02 10:40:59
(2 weeks ago)
"GET /.git/config HTTP/1.1" 404 5069 "-" "Mozilla/5.0 (X11; Linux x86_64) A...
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 10:13:42
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:13:39.909475 2026] [security2:error] [pid 24435:tid 24435] [client 209.38.92.88:59010] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jeffersonlynn.com"] [uri "/.git/config"] [unique_id "akY5072P73-8QZKs-fbeQwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 09:55:05
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:54:57.220886 2026] [security2:error] [pid 27360:tid 27360] [client 209.38.92.88:52644] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blackriverarc.org"] [uri "/.git/config"] [unique_id "akY1cbX-UOE0r6qCb4ADzgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 08:53:21
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 04:53:15.453584 2026] [security2:error] [pid 306:tid 306] [client 209.38.92.88:54858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kavahawaii.com"] [uri "/.git/config"] [unique_id "akYm-2FjeD-61RPxjoD71gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 08:34:16
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 04:34:10.991067 2026] [security2:error] [pid 32333:tid 32333] [client 209.38.92.88:58340] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blacksheepoffroad.com"] [uri "/.git/config"] [unique_id "akYigoh0soc83ytbN_2HmQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack