๐ช๐ธ
Gem
2026-07-03 22:17:48
(2 days ago)
Unauthorized web scan.
Web App Attack
๐ฌ๐ง
andypiper
2026-07-01 01:01:31
(5 days ago)
CrowdSec ban for AbuseIPDB Top List
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 00:33:28
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 20:33:20.622687 2026] [security2:error] [pid 31565:tid 31565] [client 34.126.132.143:54414] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.moanddoyle.michaelprussin.com"] [uri "/.git/config"] [unique_id "akRgUGOcGe9p1BmeymYSVQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
mxbl
2026-07-01 00:20:04
(5 days ago)
Scanning for CMS vulnerabilities on a non-CMS system: /.git/config
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-01 00:14:27
(5 days ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.126.132.143 (SG/Singapore/143.13 ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.126.132.143 (SG/Singapore/143.132.126.34.bc.googleusercontent.com): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 00:01:42
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 20:01:37.472205 2026] [security2:error] [pid 5387:tid 5387] [client 34.126.132.143:58224] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mitchell238.macryder.com"] [uri "/.git/config"] [unique_id "akRY4ds5l4y9PRMKp9PzpAAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-30 23:50:23
(5 days ago)
PAD: Bad_Web_Bot_D detected
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-30 23:40:28
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 19:40:23.849145 2026] [security2:error] [pid 7812:tid 7812] [client 34.126.132.143:49996] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mininomotorfix.com.mininoarg.com"] [uri "/.git/config"] [unique_id "akRT55WNFchln79Xu5kKTAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
MM-bot
2026-06-30 23:24:18
(5 days ago)
URL-probe: HTTP/1.1 GET request on /.git/config (2026-07-01 01:24:18 UTC+2)
Web App Attack
Hacking
๐ฉ๐ช
Lino Project
2026-06-30 23:22:06
(5 days ago)
34.126.132.143 - - [01/Jul/2026:01:22:01 +0200] "GET /.git/config HTTP/1.1" 403 3822 "-" "-"
...
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 23:20:38
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 19:20:31.457666 2026] [security2:error] [pid 5465:tid 5465] [client 34.126.132.143:45796] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.militarybratsglobal.srtmanagementservices.com"] [uri "/.git/config"] [unique_id "akRPP-tgu8gEWyJ4-Aw_5AAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
srebrakowski.com
2026-06-30 23:15:59
(5 days ago)
crowdsec/waf-detected-exploits
Brute-Force
๐ฉ๐ช
joharikop
2026-06-30 23:14:31
(5 days ago)
Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-cred ...
show more
Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-credential-probes jail.
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 23:02:42
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 19:02:38.414309 2026] [security2:error] [pid 20346:tid 20346] [client 34.126.132.143:45294] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.midea.cloudex.link"] [uri "/.git/config"] [unique_id "akRLDq-4DU31T0YcKl0ERgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 22:45:40
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.126.132.143 (143.132.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 18:45:33.539446 2026] [security2:error] [pid 24144:tid 24144] [client 34.126.132.143:37482] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mhservice.mayan.abecasis.com"] [uri "/.git/config"] [unique_id "akRHDeY8LknNYA2Ut4hhIAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack