๐จ๐ญ
TheCoon
2026-06-10 08:00:02
(2 weeks ago)
Automated: Credential theft attempt - JSON bomb served
Web App Attack
Hacking
๐จ๐ญ
Peter-Johann Sarbach
2026-06-10 04:40:24
(2 weeks ago)
Hacking website
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-06-09 22:00:01
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
CBJ
2026-06-09 15:29:40
(2 weeks ago)
fail2ban: apache-filepath-recon
...
Web App Attack
๐ฉ๐ช
4server
2026-06-09 15:06:28
(2 weeks ago)
[TueJun0917:06:25.2799012026][security2:error][pid3110928:tid3111062][client34.66.132.18:0]ModSecuri ...
show more
[TueJun0917:06:25.2799012026][security2:error][pid3110928:tid3111062][client34.66.132.18:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"gmpsud.ch.136-243-54-122.cpanel.site\"][uri\"/.git/config\"][unique_id\"aigr8aNg56m_cJI3xnvABgAAAMU\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 15:02:55
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:02:50.764581 2026] [security2:error] [pid 22797:tid 22797] [client 34.66.132.18:42620] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agrisea.net"] [uri "/.git/config"] [unique_id "aigrGguzUpbKdeshPqARzAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 12:29:45
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:29:37.065930 2026] [security2:error] [pid 13384:tid 13384] [client 34.66.132.18:54782] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "justjunglejuice.org"] [uri "/.git/config"] [unique_id "aigHMTiLIVdnJhd0BuqKSQAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 07:09:04
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 03:08:56.915728 2026] [security2:error] [pid 31172:tid 31172] [client 34.66.132.18:41666] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "polymermembranes.com"] [uri "/.git/config"] [unique_id "aie8CFYKbk3NTqEy-UOXHgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 05:58:28
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:58:23.957908 2026] [security2:error] [pid 19821:tid 19821] [client 34.66.132.18:51936] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dailytailadventures.com.fiyaplatform.com"] [uri "/.git/config"] [unique_id "aierf27SRAWDJpWTP3NL9QAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 02:26:49
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 22:26:42.917313 2026] [security2:error] [pid 24617:tid 24617] [client 34.66.132.18:41370] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.drbbenefits.com"] [uri "/.git/config"] [unique_id "aid54v4zQMx2xKe7OVhOmAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 00:42:22
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 20:42:17.468303 2026] [security2:error] [pid 17678:tid 17678] [client 34.66.132.18:48706] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.casinoaffiliateprogramsonline.com.crazycoin.net"] [uri "/.git/config"] [unique_id "aidhaX_e3ewrrMJddrqqJgAAADA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 19:52:26
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:52:18.408211 2026] [security2:error] [pid 27468:tid 27468] [client 34.66.132.18:36808] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "azpinklimos.com"] [uri "/.git/config"] [unique_id "aicdcljzw-vTv2cFEFlYpwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 19:20:12
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:20:06.807529 2026] [security2:error] [pid 4364:tid 4364] [client 34.66.132.18:52500] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.deltad.net"] [uri "/.git/config"] [unique_id "aicV5lV91qx0SObsFvJq2wAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Axel
2026-06-08 18:25:47
(2 weeks ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/config ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/config Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-06-08 17:37:21
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.66.132.18 (18.132.66.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:37:12.682606 2026] [security2:error] [pid 9650:tid 9650] [client 34.66.132.18:55934] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.westernmassaa.net"] [uri "/.git/config"] [unique_id "aib9yKRkIzzm8Bame9s2sAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack