๐ณ๐ฑ
homeshowdomain.nl
2026-07-16 22:05:19
(1 day ago)
Auto-ban: >3000 req/min op 2026-07-16
Web App Attack
SSH
Hacking
๐ง๐ฌ
HighWay
2026-07-16 18:44:18
(2 days ago)
3.65.11.36 - - [16/Jul/2026:18:44:15 +0000] "GET /.git/config HTTP/1.1" 403 485 "-" "Mozilla/5.0 (Ma ...
show more
3.65.11.36 - - [16/Jul/2026:18:44:15 +0000] "GET /.git/config HTTP/1.1" 403 485 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
3.65.11.36 - - [16/Jul/2026:18:44:15 +0000] "GET /.env HTTP/1.1" 403 430 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
3.65.11.36 - - [16/Jul/2026:18:44:15 +0000] "GET /.env.local HTTP/1.1" 403 430 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
...
show less
Port Scan
Bad Web Bot
Web App Attack
Anonymous
2026-07-16 15:06:15
(2 days ago)
Blocked: Reason='Vulnerability probing โ PHP scan detected (41/60 min)'; Requests=41
Port Scan
๐บ๐ธ
TPI-Abuse
2026-07-16 14:04:59
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 3.65.11.36 (ec2-3-65-11-36.eu-central-1.compute ...
show more
(mod_security) mod_security (id:210492) triggered by 3.65.11.36 (ec2-3-65-11-36.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 10:04:51.303746 2026] [security2:error] [pid 27013:tid 27013] [client 3.65.11.36:57604] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "longbowhunter.gnquivers.com"] [uri "/.git/config"] [unique_id "aljlA9SmimvQipbm4C5QzQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 13:05:51
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 3.65.11.36 (ec2-3-65-11-36.eu-central-1.compute ...
show more
(mod_security) mod_security (id:210492) triggered by 3.65.11.36 (ec2-3-65-11-36.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 09:05:47.748929 2026] [security2:error] [pid 2847:tid 2847] [client 3.65.11.36:45486] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lonescouting.us"] [uri "/.git/config"] [unique_id "aljXKxxN3kW_k7j_UmbW7gAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 12:07:59
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 3.65.11.36 (ec2-3-65-11-36.eu-central-1.compute ...
show more
(mod_security) mod_security (id:210492) triggered by 3.65.11.36 (ec2-3-65-11-36.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 08:07:54.358827 2026] [security2:error] [pid 28061:tid 28061] [client 3.65.11.36:42696] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "londongroup.info"] [uri "/.git/config"] [unique_id "aljJmuMQW4LnYdwa-xhfkgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 09:55:52
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 3.65.11.36 (ec2-3-65-11-36.eu-central-1.compute ...
show more
(mod_security) mod_security (id:210492) triggered by 3.65.11.36 (ec2-3-65-11-36.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 05:55:48.306377 2026] [security2:error] [pid 31027:tid 31027] [client 3.65.11.36:36826] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lollytalk.com"] [uri "/.git/config"] [unique_id "aliqpAQrmW84vkj-P5snOgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-16 05:00:15
(2 days ago)
Multiple WAF Violations
Web App Attack
๐จ๐ญ
Ribeye375
2026-07-16 03:41:02
(2 days ago)
HIPS web-exfiltration - Block tcp/0:65535
Web App Attack
๐บ๐ธ
deskpass.com
2026-07-16 03:16:31
(2 days ago)
GET /core/phpinfo.php
Web App Attack