π³π΄
jad@
2026-06-09 16:34:55
(1 hour ago)
ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure ...
show more
ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 1 hits.
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 16:15:56
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 12:15:50.241905 2026] [security2:error] [pid 29908:tid 29918] [client 34.75.48.15:60980] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.charteredfinancialmanager.aafm.us"] [uri "/.git/config"] [unique_id "aig8Nn8xPsCIip1652zGpwAAAQU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Blexyel
2026-06-09 15:24:59
(2 hours ago)
34.75.48.15 - - [09/Jun/2026:17:24:59 +0200] "GET /.git/config HTTP/1.1" 200 1309 "-" "Mozilla/5.0 ( ...
show more
34.75.48.15 - - [09/Jun/2026:17:24:59 +0200] "GET /.git/config HTTP/1.1" 200 1309 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.116" "kitty.s3.fomx.gay"
...
show less
Brute-Force
Web App Attack
π¨π
ALPHANET
2026-06-09 14:56:56
(3 hours ago)
web exploits
Hacking
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 14:19:28
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:19:24.873304 2026] [security2:error] [pid 14144:tid 14144] [client 34.75.48.15:34578] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naominixon.com"] [uri "/.git/config"] [unique_id "aigg7JVibQAlxtjgZYV5XwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 11:47:55
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:47:49.631957 2026] [security2:error] [pid 30447:tid 30447] [client 34.75.48.15:45406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bcbikini.com.puckerbikini.com"] [uri "/.git/config"] [unique_id "aif9ZQn5BQc7_pgeC3_7pgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 08:40:52
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:40:49.596856 2026] [security2:error] [pid 21784:tid 21784] [client 34.75.48.15:40036] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.10bestcountryclubs.directoryofbikes.com"] [uri "/.git/config"] [unique_id "aifRkVl_0I5OLCgo46vMCQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 03:02:03
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:01:56.797035 2026] [security2:error] [pid 13684:tid 13684] [client 34.75.48.15:50942] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gogitzit.com"] [uri "/.git/config"] [unique_id "aieCJFhrB8e4fbxmKnoRJQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-06-09 02:05:14
(16 hours ago)
Abuse Detected (1)
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 01:48:20
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:48:14.592981 2026] [security2:error] [pid 30605:tid 30605] [client 34.75.48.15:39142] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garantagroup.com"] [uri "/.git/config"] [unique_id "aidw3rvmexzdSCx8VfZWpwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 00:47:36
(17 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.75.48.15 (15.48.75.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 20:47:30.899473 2026] [security2:error] [pid 16949:tid 16949] [client 34.75.48.15:40562] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "targetbinario.com"] [uri "/.git/config"] [unique_id "aidioip_Xov-u8xYRwEVLgAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
big-cloud.nl
2026-06-09 00:47:31
(17 hours ago)
Try to access /.git/config
Web App Attack
πΊπΈ
walnuts
2026-06-09 00:44:16
(17 hours ago)
Automated: Triggered nginx security jail (nginx-444) - probing blocked paths on web server
Bad Web Bot
Web App Attack
π«π·
masterguru
2026-06-09 00:32:36
(17 hours ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.75.48.15 (US/United States/15.48.7 ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.75.48.15 (US/United States/15.48.75.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195)
show less
Hacking
πΊπΈ
ambor
2026-06-09 00:20:52
(17 hours ago)
L0ss Honeypot: Git configuration file access attempt. Path: /.git/config
Web App Attack