π«π·
masterguru
2026-07-02 11:19:01
(5 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)
Hacking
Web App Attack
πΊπΈ
CBJ
2026-07-02 06:35:37
(10 hours ago)
fail2ban: apache-filepath-recon
...
Web App Attack
Anonymous
2026-07-01 22:41:31
(18 hours ago)
34.124.212.98 - - [02/Jul/2026:00:41:24 +0200] "GET /phpinfo.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 ...
show more
34.124.212.98 - - [02/Jul/2026:00:41:24 +0200] "GET /phpinfo.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
34.124.212.98 - - [02/Jul/2026:00:41:24 +0200] "GET /info.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
34.124.212.98 - - [02/Jul/2026:00:41:25 +0200] "GET /php.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
34.124.212.98 - - [02/Jul/2026:00:41:25 +0200] "GET /i.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
34.124.212.98 - - [02/Jul/2026:00:41:25 +0200] "GET /pi.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
34.124.212.98
...
show less
Web App Attack
π³π±
homeshowdomain.nl
2026-07-01 22:14:53
(18 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-30.
show less
Web App Attack
SSH
Hacking
πΊπΈ
TPI-Abuse
2026-07-01 21:53:30
(19 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.124.212.98 (98.212.124.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.124.212.98 (98.212.124.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:53:24.230926 2026] [security2:error] [pid 15826:tid 15826] [client 34.124.212.98:45040] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elainebroussard.com"] [uri "/.git/config"] [unique_id "akWMVDxjKaZ2E5TITxAIVAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
dbmwebdesign
2026-07-01 09:45:46
(1 day ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
π³π±
Site.eu
2026-06-30 22:21:00
(1 day ago)
Excessive 404/403 errors
Brute-Force
π©πͺ
Ba-Yu
2026-06-30 16:39:34
(2 days ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
π¬π§
relianoid.com
2026-06-28 00:33:21
(4 days ago)
404 Errors Abuse detected by Relianoid OSS Load Balancer - relianoid.com
Web App Attack
π©πͺ
nyt
2026-06-26 05:45:27
(6 days ago)
Sensitive File Probe
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-24 11:31:22
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 34.124.212.98 (98.212.124.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.124.212.98 (98.212.124.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 07:31:14.957508 2026] [security2:error] [pid 16063:tid 16063] [client 34.124.212.98:60306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.skintormint.com"] [uri "/.git/config"] [unique_id "ajvAAixaxqUYDMWTLOXJ1QAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-24 10:28:45
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 34.124.212.98 (98.212.124.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.124.212.98 (98.212.124.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 06:28:41.734081 2026] [security2:error] [pid 24099:tid 24108] [client 34.124.212.98:48196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.georgementz.com"] [uri "/.git/config"] [unique_id "ajuxWd9x95YSYkxUvefzjQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πͺ
cmbplf
2026-06-22 20:38:46
(1 week ago)
308 requests with url.path *phpinfo.php
Brute-Force
Bad Web Bot
Anonymous
2026-06-22 19:57:04
(1 week ago)
Bot / scanning and/or hacking attempts: GET /.env.old HTTP/1.1, GET /app/.env HTTP/1.1, GET /.env.pr ...
show more
Bot / scanning and/or hacking attempts: GET /.env.old HTTP/1.1, GET /app/.env HTTP/1.1, GET /.env.prod HTTP/1.1, GET /.env.stage HTTP/1.1, GET /.env.yaml HTTP/1.1, GET /.env.sample HTTP/1.1, GET /.env.ci HTTP/1.1, GET /.env.dev HTTP/1.1, GET /.env.yml HTTP/1.1, GET /.env.json HTTP/1.1, GET /.env_copy HTTP/1.1, GET /.env.example HTTP/1.1
show less
Hacking
Web App Attack
π§πͺ
Saec
2026-05-27 12:00:05
(1 month ago)
Cloudflare WAF blocked 382 requests in 1h from SG. Top paths probed: /, /wp-login.php, /api/honeypot ...
show more
Cloudflare WAF blocked 382 requests in 1h from SG. Top paths probed: /, /wp-login.php, /api/honeypot/hit. Pattern: bot/scanner abuse. Auto-reported by Jarvis CF monitor.
show less
Brute-Force
Web App Attack