2026-06-11 13:06:02
(3 hours ago)
Trying to access config files
Web App Attack
π³π±
homeshowdomain.nl
2026-06-09 22:03:34
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08.
show less
Web App Attack
SSH
Hacking
2026-06-09 16:06:03
(2 days ago)
Trying to access config files
Web App Attack
π¨π¦
TechnoSolutions CL
2026-06-09 15:00:04
(2 days ago)
34.181.218.92 - - [09/Jun/2026:15:00:02 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (U ...
show more
34.181.218.92 - - [09/Jun/2026:15:00:02 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Unknown; U; UNIX BSD/SYSV system; C -) AppleWebKit/527 (KHTML, like Gecko, Safari/419.3) Arora/0.10.2"
34.181.218.92 - - [09/Jun/2026:15:00:04 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Opera/9.80 (Windows NT 6.1; U; es-ES) Presto/2.9.181 Version/12.00"
...
show less
Hacking
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 12:57:28
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:57:20.384846 2026] [security2:error] [pid 18405:tid 18405] [client 34.181.218.92:55160] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "petesplaza.com"] [uri "/.git/config"] [unique_id "aigNsKUSDdHQkTYund029QAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
4server
2026-06-09 12:57:26
(2 days ago)
[TueJun0914:57:20.5623502026][security2:error][pid1123867:tid1124100][client34.181.218.92:0]ModSecur ...
show more
[TueJun0914:57:20.5623502026][security2:error][pid1123867:tid1124100][client34.181.218.92:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"ruberticonsulting.ch\"][uri\"/.git/config\"][unique_id\"aigNsGx16aBpeCOTsuZ-zgAAAQ4\"]
show less
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 12:38:46
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:38:42.895545 2026] [security2:error] [pid 3399:tid 3399] [client 34.181.218.92:50472] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.feaverslane.com"] [uri "/.git/config"] [unique_id "aigJUsu6onJXD6cQV0zemAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 12:23:12
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:23:09.240726 2026] [security2:error] [pid 18635:tid 18635] [client 34.181.218.92:54592] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drschneedle.org.theholographicseed.com"] [uri "/.git/config"] [unique_id "aigFrTg-D8-ykrhd9yk5bwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 11:32:40
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:32:32.609013 2026] [security2:error] [pid 6628:tid 6628] [client 34.181.218.92:41944] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mecme.co"] [uri "/.git/config"] [unique_id "aif50O8lwXk3MUNOpf0HUwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 10:33:22
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:33:15.859638 2026] [security2:error] [pid 31530:tid 31530] [client 34.181.218.92:56654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jeffjastro.com"] [uri "/.git/config"] [unique_id "aifr6_qLfXMKSAcFp8gQqwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
JPPO
2026-06-09 09:54:25
(2 days ago)
Port 443 : GET /.git or /.git/HEAD, /.git/config ... /.DS_store
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 08:08:45
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:08:40.695144 2026] [security2:error] [pid 16241:tid 16241] [client 34.181.218.92:38318] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ballast-capital.com"] [uri "/.git/config"] [unique_id "aifKCHpdf5w6M1jOClHZMQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 06:46:26
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 02:46:21.521310 2026] [security2:error] [pid 14951:tid 14951] [client 34.181.218.92:39336] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "truthbeam.org.amybeam.com"] [uri "/.git/config"] [unique_id "aie2vcTXddz5C_65yE6OjQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 05:51:17
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:51:09.984388 2026] [security2:error] [pid 6499:tid 6499] [client 34.181.218.92:40980] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.havelocktruckandauto.ca.modeltdr.com"] [uri "/.git/config"] [unique_id "aiepzZewyudIfBaLFiLDswAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 04:01:04
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.181.218.92 (92.218.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 00:00:56.303207 2026] [security2:error] [pid 32708:tid 32719] [client 34.181.218.92:34444] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.possibilitywhisperer.teritemme.com"] [uri "/.git/config"] [unique_id "aieP-BnD2QaPMqr8cirLpQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack