π³π±
homeshowdomain.nl
2026-06-17 22:04:50
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-16.
show less
Web App Attack
SSH
Hacking
π³π±
Savvii
2026-06-16 07:19:19
(2 weeks ago)
20 attempts against mh_ha-misbehave-ban on ethyl
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-16 06:52:09
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.138.215.23 (23.215.138.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.138.215.23 (23.215.138.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 02:52:01.340574 2026] [security2:error] [pid 9682:tid 9682] [client 34.138.215.23:41638] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.vanessawyll.com.vanemby.com"] [uri "/.git/config"] [unique_id "ajDykV-OBcoKNT8_AuHy8wAAAI8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-16 06:51:06
(2 weeks ago)
Aggressive web scan
Bad Web Bot
Web App Attack
π©πͺ
Petros Stefanakis
2026-06-16 05:59:21
(2 weeks ago)
(mod_security) mod_security triggered on hostname [redacted] 34.138.215.23 (US/United States/23.215. ...
show more
(mod_security) mod_security triggered on hostname [redacted] 34.138.215.23 (US/United States/23.215.138.34.bc.googleusercontent.com)
show less
SQL Injection
πΊπΈ
TPI-Abuse
2026-06-16 05:47:08
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.138.215.23 (23.215.138.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.138.215.23 (23.215.138.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 01:47:03.921705 2026] [security2:error] [pid 15911:tid 15948] [client 34.138.215.23:60662] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.transiit.org"] [uri "/.git/config"] [unique_id "ajDjV_L7dz3AhVdXAuQsQwAAAcA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-06-16 00:22:57
(2 weeks ago)
Too many Status 40X (30)
Scanning/Probing (42)
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-15 19:35:36
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.138.215.23 (23.215.138.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.138.215.23 (23.215.138.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 15:35:29.909099 2026] [security2:error] [pid 1564:tid 1564] [client 34.138.215.23:42466] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.shofarmusic.com"] [uri "/app/.git/config"] [unique_id "ajBUAc-WbRqc_Yc_Prqv8wAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack