๐ณ๐ฑ
homeshowdomain.nl
2026-07-12 21:59:42
(1 hour ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-11.
show less
Web App Attack
SSH
Hacking
๐ง๐ช
cmbplf
2026-07-11 19:28:49
(1 day ago)
913 requests with url.path *.git/*
896 requests with url.path */.git/config
Brute-Force
Bad Web Bot
๐บ๐ธ
Epimetheus
2026-07-11 17:38:03
(1 day ago)
Unauthorized access attempts:
[GET] /.git/config
UA: Mozilla/5.0 (X11; Linux x86_64)
Web App Attack
Anonymous
2026-07-11 17:31:01
(1 day ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐ณ๐ด
jad-abuse
2026-07-11 17:27:03
(1 day ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_expos ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 1 hits.
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 17:25:43
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.19.108.94 (94.108.19.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.19.108.94 (94.108.19.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 13:25:35.824987 2026] [security2:error] [pid 31007:tid 31007] [client 34.19.108.94:41304] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dockrockukiah.com"] [uri "/.git/config"] [unique_id "alJ8j2O6G5aMft9uYuJGrgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
tsZero
2026-07-11 17:12:10
(1 day ago)
Scan example: path=/.git/config status=403
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-11 17:01:07
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.19.108.94 (94.108.19.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.19.108.94 (94.108.19.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 13:01:03.332420 2026] [security2:error] [pid 30709:tid 30709] [client 34.19.108.94:50696] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.livingawakenedbook.com"] [uri "/.git/config"] [unique_id "alJ2z9QsvrIkWZNOv2YL7wAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
rellik
2026-07-11 17:00:00
(1 day ago)
Scanning Critical Directory
Hacking
Web App Attack
๐ณ๐ฑ
ipoac.nl
2026-07-11 16:40:42
(1 day ago)
-:443 34.19.108.94 - - [11/Jul/2026:18:40:40 +0200] - "GET /.git/config HTTP/1.1" 404 52911 "-" "Moz ...
show more
-:443 34.19.108.94 - - [11/Jul/2026:18:40:40 +0200] - "GET /.git/config HTTP/1.1" 404 52911 "-" "Mozilla/5.0 (X11; Linux x86_64)"
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-11 16:36:39
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.19.108.94 (94.108.19.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.19.108.94 (94.108.19.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 12:36:36.330214 2026] [security2:error] [pid 14090:tid 14090] [client 34.19.108.94:36894] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "321q.com"] [uri "/.git/config"] [unique_id "alJxFAAzzHkfVQySv2yMswAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
000rosiu
2026-07-11 16:30:45
(1 day ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoi ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoint: /.git/config | UA: Mozilla/5.0 (X11; Linux x86_64) โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
mnsf
2026-07-11 16:05:02
(1 day ago)
Abuse Detected (9)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 16:02:32
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.19.108.94 (94.108.19.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.19.108.94 (94.108.19.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 12:02:28.030956 2026] [security2:error] [pid 2689:tid 2689] [client 34.19.108.94:53542] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.globalpackets.net"] [uri "/.git/config"] [unique_id "alJpFDXDQeQVXxcrMZ6inQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
as211431.net
2026-07-11 15:57:44
(1 day ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/config
UA: Mozilla/5.0 (X11; Linux x86_64)
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot