Anonymous
2026-07-01 04:37:58
(42 minutes ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐ณ๐ฑ
homeshowdomain.nl
2026-06-14 22:02:07
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-13.
show less
Web App Attack
SSH
Hacking
๐ฏ๐ต
beon
2026-06-13 16:13:41
(2 weeks ago)
[DateTime=>2026-06-13T16:13:41Z (UTC)] , [HoneyPot_Hit=>once] , [HoneyPot=>/.git/config] , [total_Hi ...
show more
[DateTime=>2026-06-13T16:13:41Z (UTC)] , [HoneyPot_Hit=>once] , [HoneyPot=>/.git/config] , [total_Hit=>once]
show less
Bad Web Bot
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-13 15:39:58
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:39:53.651397 2026] [security2:error] [pid 17267:tid 17267] [client 34.101.61.138:41732] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "itbcanada.com"] [uri "/.git/config"] [unique_id "ai15yX1caIod_4ds57ioDgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 14:42:06
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 10:42:00.364040 2026] [security2:error] [pid 530:tid 530] [client 34.101.61.138:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "globetechsecurities.com"] [uri "/.git/config"] [unique_id "ai1sOCacIRlDvY34xGut-wAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 12:23:37
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 08:23:29.972140 2026] [security2:error] [pid 25102:tid 25102] [client 34.101.61.138:60380] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.drgtek.com.smogsandiego.com"] [uri "/.git/config"] [unique_id "ai1LwTJyTM1Y3XBZ0W8gKgAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 11:47:27
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 07:47:19.597090 2026] [security2:error] [pid 30487:tid 30487] [client 34.101.61.138:36632] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "judithchallender.com"] [uri "/.git/config"] [unique_id "ai1DR0HaXCl04F6ia_aT5AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 11:11:22
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 07:11:16.368527 2026] [security2:error] [pid 23529:tid 23529] [client 34.101.61.138:40988] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.softwarezz.net"] [uri "/.git/config"] [unique_id "ai061MEvDMWuoYs80BIpOAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 09:35:45
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:35:40.972148 2026] [security2:error] [pid 18951:tid 18951] [client 34.101.61.138:56002] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.troop88.mvscouts.org"] [uri "/.git/config"] [unique_id "ai0kbGWnUDKYg3BZsRq6NwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 09:14:01
(2 weeks ago)
(mod_security) mod_security (id:949110) triggered by 34.101.61.138 (138.61.101.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:949110) triggered by 34.101.61.138 (138.61.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:13:56.688321 2026] [security2:error] [pid 11630:tid 11630] [client 34.101.61.138:52840] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "chuckwagon.org"] [uri "/.git/config"] [unique_id "ai0fVBR20CfCLG7oTPLqwwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
IVski
2026-06-13 05:50:19
(2 weeks ago)
IVski WAF | Sensitive file probe detected - looking for .git
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 04:57:37
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.101.61.138 (138.61.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:57:31.321594 2026] [security2:error] [pid 5712:tid 5712] [client 34.101.61.138:39750] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cffragrances.iee-usa.com"] [uri "/.git/config"] [unique_id "aizjO1C5hU8IVXZnbAJeQQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-06-13 04:24:03
(2 weeks ago)
13.518 requests with url.path *.git/*
Brute-Force
Bad Web Bot
๐บ๐ธ
mnsf
2026-06-13 04:09:03
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack