๐ณ๐ฑ
homeshowdomain.nl
2026-07-02 21:59:10
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-01.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-02 02:34:45
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.65.125.153 (153.125.65.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.65.125.153 (153.125.65.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 22:34:37.828976 2026] [security2:error] [pid 8183:tid 8183] [client 34.65.125.153:50104] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "five21.com"] [uri "/.git/config"] [unique_id "akXOPX1pyqnKzq869czwgwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 20:00:00
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.65.125.153 (153.125.65.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.65.125.153 (153.125.65.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 15:59:53.835090 2026] [security2:error] [pid 13665:tid 13684] [client 34.65.125.153:41402] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fishrapper.com"] [uri "/.git/config"] [unique_id "akVxuYlIQA9caM_ZNnMN4AAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 11:06:00
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.65.125.153 (153.125.65.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.65.125.153 (153.125.65.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 07:05:54.670545 2026] [security2:error] [pid 605:tid 605] [client 34.65.125.153:46784] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "firingsquadfilms.com"] [uri "/.git/config"] [unique_id "akT0knYoxQ5k-CIHU3NoGQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
CBJ
2026-07-01 08:16:45
(3 days ago)
fail2ban: apache-filepath-recon
...
Web App Attack
๐ซ๐ท
Baking333
2026-07-01 05:31:56
(3 days ago)
[redacted] 34.65.125.153 - - [01/Jul/2026:06:31:53 +0100] "GET /.git/config HTTP/1.1" 302 6763 0/634 ...
show more
[redacted] 34.65.125.153 - - [01/Jul/2026:06:31:53 +0100] "GET /.git/config HTTP/1.1" 302 6763 0/63411 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" [redacted] 34.65.125.153 - - [01/Jul/2026:06:31:54 +0100] "GET /.env HTTP/1.1" 302 1544 0/181835 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐ฏ๐ต
beon
2026-06-30 21:44:25
(3 days ago)
[DateTime=>2026-06-30T21:44:25Z to 2026-06-30T21:45:36Z (UTC)] , [HoneyPot_Hits=>257 times] , [Honey ...
show more
[DateTime=>2026-06-30T21:44:25Z to 2026-06-30T21:45:36Z (UTC)] , [HoneyPot_Hits=>257 times] , [HoneyPots=>/.git/config, /.env, /.env.local, /.env.production, /.env.staging, /.env.development and others] , [404targets=>/_environment, /phpinfo.php.bak, /phpinfo.php.old, /phpinfo.php~, /info.php.bak, /phpinfo.php.save] , [total_Hits=>263 times] , [hit_per_second=>3.7] , [Keyword=>WordPress, PHP web shells]
show less
Bad Web Bot
Web App Attack
Hacking
๐ฉ๐ช
dbmwebdesign
2026-06-30 18:45:45
(3 days ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐ฉ๐ช
netclix.gr
2026-06-26 08:51:07
(1 week ago)
(mod_security) mod_security triggered on hostname [redacted] 34.65.125.153 (CH/Switzerland/153.125.6 ...
show more
(mod_security) mod_security triggered on hostname [redacted] 34.65.125.153 (CH/Switzerland/153.125.65.34.bc.googleusercontent.com): (CF_ENABLE)
show less
SQL Injection
๐บ๐ธ
jormaster3k
2026-06-25 17:11:59
(1 week ago)
Attack against Apache (too many 404s)
Web App Attack
Anonymous
2026-06-25 14:02:24
(1 week ago)
Web attack
Bad Web Bot
Web App Attack
Anonymous
2026-06-25 09:29:59
(1 week ago)
Aggressive web scan
Web App Attack
๐จ๐ฟ
ddw
2026-06-24 17:25:52
(1 week ago)
ModSecurity detection - Rules: 949110(Inbound Anomaly Score Exceeded (Total Score: 10))
Web App Attack
๐ฎ๐น
VHosting
2026-06-22 22:40:03
(1 week ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ง๐ช
cmbplf
2026-06-22 21:26:27
(1 week ago)
2.610 requests with url.path *.env
418 requests with url.path *phpinfo.php
Brute-Force
Bad Web Bot