๐ณ๐ฑ
homeshowdomain.nl
2026-07-05 22:01:41
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-04.
show less
Web App Attack
SSH
Hacking
Anonymous
2026-07-04 12:24:07
(3 days ago)
CrowdSec ban: crowdsecurity/http-sensitive-files
Port Scan
๐บ๐ธ
kosada.com
2026-07-04 12:23:47
(3 days ago)
Web vulnerability probing: /wp-content/.git/config
Web App Attack
๐ฉ๐ช
WinnieHoneypots
2026-07-04 12:23:37
(3 days ago)
Probe hitting /src/.git/config detected. Whatcha lookin for in there?!
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 12:12:55
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.101.171.119 (119.171.101.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.171.119 (119.171.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 08:12:51.691387 2026] [security2:error] [pid 15883:tid 15883] [client 34.101.171.119:45262] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.theroyalindian.jbaydeliveries.com"] [uri "/wp-content/.git/config"] [unique_id "akj4wxaIxSiruWmMu68d3gAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 11:34:38
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.101.171.119 (119.171.101.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.171.119 (119.171.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 07:34:33.581928 2026] [security2:error] [pid 24153:tid 24153] [client 34.101.171.119:55576] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.advisorstudios.cms2020.com"] [uri "/.git/config"] [unique_id "akjvyZFDeDypNMDJFsU0tAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-04 11:30:18
(3 days ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 11:15:30
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.101.171.119 (119.171.101.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.171.119 (119.171.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 07:15:22.841152 2026] [security2:error] [pid 11885:tid 11885] [client 34.101.171.119:36702] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "franchiseconsultants.biz"] [uri "/v2/.git/config"] [unique_id "akjrSqO4vh_Riy0uIiH9ZwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-07-04 11:11:40
(3 days ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-04 11:07:08
(3 days ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
๐ช๐ธ
pipeline.es
2026-07-04 11:04:08
(3 days ago)
Web scanning / probing for vulnerable paths | URL: /assets/.git/config | Evidence: booking.eliotours ...
show more
Web scanning / probing for vulnerable paths | URL: /assets/.git/config | Evidence: booking.eliotours.es 34.101.171.119 - - [04/Jul/2026:13:03:02 +0200] \"GET /assets/.git/config HTTP/1.1\" 404 28583 \"-\" \"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36\" GEOIP_COUNTRY_CODE=ID | ASN: GOOGLE-CLOUD-PLATFORM | Country: ID
show less
Port Scan
Web App Attack