๐ฉ๐ช
iNetWorker
2026-07-03 23:17:53
(11 hours ago)
trolling for resource vulnerabilities
Web App Attack
๐ซ๐ฎ
mnazibo
2026-07-03 23:00:07
(11 hours ago)
Date: 04/Jul/2026 01:06:00 | Reported IP: 34.21.168.226 mod_security | id: 930130 | SG/group.my_doma ...
show more
Date: 04/Jul/2026 01:06:00 | Reported IP: 34.21.168.226 mod_security | id: 930130 | SG/group.my_domain/- | Connections: 1 | Blocked: Permanent Block: [LF_MODSEC] | URIs: /.git/config | Logs: Restricted File Access Attempt
show less
SQL Injection
Brute-Force
Bad Web Bot
Anonymous
2026-07-03 22:56:02
(11 hours ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐ฎ๐น
Inartis
2026-07-03 22:52:54
(11 hours ago)
34.21.168.226 - - [04/Jul/2026:00:52:54 +0200] "GET /.git/config HTTP/1.1" 404 3668 "-" "-"
...
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-03 22:31:15
(12 hours ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 22:23:42
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.21.168.226 (226.168.21.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.21.168.226 (226.168.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 18:23:37.590784 2026] [security2:error] [pid 16605:tid 16605] [client 34.21.168.226:37406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.puckerbottombikini.com"] [uri "/.git/config"] [unique_id "akg2abtf2-YpPykPFAEqjwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
polycoda
2026-07-03 22:14:09
(12 hours ago)
AutoBlock: โ๏ธ Configuration File Access (Non Decay-Based)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 21:57:37
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.21.168.226 (226.168.21.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.21.168.226 (226.168.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 17:57:31.950649 2026] [security2:error] [pid 3099:tid 3099] [client 34.21.168.226:53930] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.pioneercanadian.com"] [uri "/.git/config"] [unique_id "akgwSw3sT9bRbyJtxtjukQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
pinguin
2026-07-03 21:56:56
(12 hours ago)
Triggered Cloudflare WAF (firewallManaged) from SG.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET meth ...
show more
Triggered Cloudflare WAF (firewallManaged) from SG.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/config
UA: Empty string
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ณ๐ฑ
e.fierstra
2026-07-03 21:48:53
(12 hours ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 21:20:49
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.21.168.226 (226.168.21.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.21.168.226 (226.168.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 17:20:41.543370 2026] [security2:error] [pid 27856:tid 27856] [client 34.21.168.226:56984] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.onewordlong.com"] [uri "/.git/config"] [unique_id "akgnqftcmOymOKp64fd51AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 20:03:52
(14 hours ago)
(mod_security) mod_security (id:949110) triggered by 34.21.168.226 (226.168.21.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:949110) triggered by 34.21.168.226 (226.168.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 16:03:45.423157 2026] [security2:error] [pid 4491:tid 4491] [client 34.21.168.226:53484] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.code.freedrm.org"] [uri "/.git/config"] [unique_id "akgVoR1SteYunX3h0QND1gAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
cwytech
2026-07-03 19:58:06
(14 hours ago)
Fleet-wide ban from the Ghostfleet ๐ป. Triggered by scenario: cwy/http-honeypath-sniper-crit.
Bad Web Bot
Web App Attack
๐บ๐ธ
interbiznw.com
2026-07-03 19:56:29
(14 hours ago)
malicious-web-requests-vulnerability-scanning
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 19:34:52
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.21.168.226 (226.168.21.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.21.168.226 (226.168.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 15:34:45.099742 2026] [security2:error] [pid 26200:tid 26200] [client 34.21.168.226:44152] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.clubfansite.com.creartest.com"] [uri "/.git/config"] [unique_id "akgO1X55w5KWzm_dB82cmAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack