Anonymous
2026-06-12 10:07:38
(3 weeks ago)
Trying to access config files
Web App Attack
Anonymous
2026-06-10 14:07:32
(4 weeks ago)
Trying to access config files
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-09 22:03:18
(4 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-09 08:33:19
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:33:16.044453 2026] [security2:error] [pid 8800:tid 8800] [client 34.23.128.52:39332] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schwanpaint.com"] [uri "/.git/config"] [unique_id "aifPzMYicTZAtb2YKvNITwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 08:06:59
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:06:53.662434 2026] [security2:error] [pid 25984:tid 25984] [client 34.23.128.52:42662] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waleed.co.waleed-alshalan.com"] [uri "/.git/config"] [unique_id "aifJnU5syhI4KpKm4DziWAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Progetto1
2026-06-09 07:50:01
(1 month ago)
Detected via HAProxyScanner at 2026-06-09 07:50:01 UTC on destination port WEB (80/443). Repeated sc ...
show more
Detected via HAProxyScanner at 2026-06-09 07:50:01 UTC on destination port WEB (80/443). Repeated scan / connection.
show less
Port Scan
Hacking
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-09 06:34:15
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 02:34:07.433136 2026] [security2:error] [pid 5625:tid 5652] [client 34.23.128.52:43628] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.destination-kitchen.com"] [uri "/.git/config"] [unique_id "aiez394C6zKELK9NhAoR2wAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
interbiznw.com
2026-06-09 06:01:28
(1 month ago)
fail2ban-ban
Hacking
Brute-Force
Exploited Host
Web App Attack
Anonymous
2026-06-09 04:51:07
(1 month ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 03:37:45
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:37:42.366715 2026] [security2:error] [pid 7381:tid 7393] [client 34.23.128.52:34242] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandbarsteve.com"] [uri "/.git/config"] [unique_id "aieKhqmsxNwMip4fo_wF1wAAAMw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 03:21:40
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:21:33.689484 2026] [security2:error] [pid 22838:tid 22838] [client 34.23.128.52:35996] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "forestvalleyfarm.com"] [uri "/.git/config"] [unique_id "aieGvY4pVxJULsVQgvQ_DQAAADk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-09 03:06:06
(1 month ago)
Trying to access config files
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-06-09 02:27:22
(1 month ago)
dot file probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 02:00:54
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.23.128.52 (52.128.23.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 22:00:48.702901 2026] [security2:error] [pid 18412:tid 18412] [client 34.23.128.52:43314] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gonzalez.com"] [uri "/.git/config"] [unique_id "aidz0JCDGyJVVbSrCw6dCgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
betternews.app
2026-06-09 01:54:09
(1 month ago)
"a web request contained keyword ".git"; Suspicious URL: /.git/config"
Web Spam
Blog Spam
Brute-Force
Bad Web Bot
Web App Attack