๐ซ๐ฎ
YF
2026-07-01 18:00:57
(1 hour ago)
Git config exposure probe
Web App Attack
๐ฉ๐ช
pltcldvlpr
2026-07-01 16:59:06
(2 hours ago)
CMS/framework probe: 34.28.87.167 - - [01/Jul/2026:18:59:06 +0200] "GET /.git/config HTTP/1.1" 444 0 ...
show more
CMS/framework probe: 34.28.87.167 - - [01/Jul/2026:18:59:06 +0200] "GET /.git/config HTTP/1.1" 444 0 "-" "-" asn=396982 org="Google LLC" country=US
...
show less
Web App Attack
๐บ๐ธ
interbiznw.com
2026-07-01 16:46:17
(2 hours ago)
malicious-web-requests-vulnerability-scanning
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
mashamal
2026-07-01 16:44:03
(2 hours ago)
Vulnerability Probe
...
Web App Attack
๐ต๐ฑ
Roper123
2026-07-01 16:42:40
(2 hours ago)
Web app exploits
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 16:31:01
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 12:30:55.689180 2026] [security2:error] [pid 9952:tid 10084] [client 34.28.87.167:60110] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.playerintro.beckmon.com"] [uri "/.git/config"] [unique_id "akVAv98lMRtMtUC_vHYo9wAAAFI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-01 16:24:21
(3 hours ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 16:16:00
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 12:15:53.967255 2026] [security2:error] [pid 11419:tid 11419] [client 34.28.87.167:47512] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pjv.us.pjvcds.com"] [uri "/.git/config"] [unique_id "akU9OcZOxPC55uVQ12cTFwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
iNetWorker
2026-07-01 16:03:19
(3 hours ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 15:56:43
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 11:56:36.407294 2026] [security2:error] [pid 2836:tid 2836] [client 34.28.87.167:49092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.piments.com.catking.net"] [uri "/.git/config"] [unique_id "akU4tEORvfqrRt7jbyKzFAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 15:22:21
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 11:22:15.992707 2026] [security2:error] [pid 32552:tid 32552] [client 34.28.87.167:50282] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mofcolorado.com.mykelmilur.com"] [uri "/.git/config"] [unique_id "akUwpwvRgoOTMw8DFko4cgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-01 14:52:44
(4 hours ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-01 14:50:18
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.28.87.167 (167.87.28.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 10:50:10.646979 2026] [security2:error] [pid 9983:tid 9983] [client 34.28.87.167:51762] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mkelectricalservices.thinksite.net"] [uri "/.git/config"] [unique_id "akUpImXbOcmuB3T_I8g_QQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-01 14:49:11
(4 hours ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.28.87.167 (US/United States/167. ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.28.87.167 (US/United States/167.87.28.34.bc.googleusercontent.com): 1 in the last 3600 secs
show less
Web App Attack
๐ฉ๐ช
mxbl
2026-07-01 14:45:12
(4 hours ago)
Scanning for CMS vulnerabilities on a non-CMS system: /.git/config
Web App Attack