π³π±
homeshowdomain.nl
2026-06-10 22:01:12
(9 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09.
show less
Web App Attack
SSH
Hacking
2026-06-10 14:06:43
(17 hours ago)
Trying to access config files
Web App Attack
2026-06-09 14:06:06
(1 day ago)
Trying to access config files
Web App Attack
2026-06-09 14:00:06
(1 day ago)
IP banned by Fail2Ban in jail nginx-abusive-ips
Web App Attack
Brute-Force
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-06-09 12:49:14
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:49:07.681766 2026] [security2:error] [pid 19396:tid 19396] [client 34.92.43.11:44494] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "frenosilent.net.ar"] [uri "/.git/config"] [unique_id "aigLw2yfJ95XJivNv-rFvQAAAFw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
4server
2026-06-09 11:35:38
(1 day ago)
[TueJun0913:35:33.4155992026][security2:error][pid2837785:tid2837908][client34.92.43.11:0]ModSecurit ...
show more
[TueJun0913:35:33.4155992026][security2:error][pid2837785:tid2837908][client34.92.43.11:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.miotrentino.it\"][uri\"/.git/config\"][unique_id\"aif6hfenzKGGaZmvyizi8wAAARE\"]
show less
Port Scan
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 11:26:46
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:26:40.537066 2026] [security2:error] [pid 7490:tid 7513] [client 34.92.43.11:46726] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "n2play.net"] [uri "/.git/config"] [unique_id "aif4cItc2BqobXNTFh7DIQAAAJQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 08:54:21
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:54:16.801011 2026] [security2:error] [pid 22473:tid 22473] [client 34.92.43.11:56120] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.carpentriesoffline.org.jannetta.com"] [uri "/.git/config"] [unique_id "aifUuBr-M_yqBJYL6x3L_gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 08:16:44
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:16:38.815610 2026] [security2:error] [pid 15573:tid 15573] [client 34.92.43.11:54780] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pawzy-app.com.lucid-events.com"] [uri "/.git/config"] [unique_id "aifL5uzhHmZJTtGI-Fq2mAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
FeG Deutschland
2026-06-09 03:52:46
(2 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
2026-06-09 02:15:04
(2 days ago)
suspicious request in access.log
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 00:58:07
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.92.43.11 (11.43.92.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 20:58:02.380966 2026] [security2:error] [pid 9040:tid 9040] [client 34.92.43.11:37082] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.m.yeswecanhandyservices.com"] [uri "/.git/config"] [unique_id "aidlGq7JHSWhui6Hd9gWiAAAAGM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³π±
Site.eu
2026-06-08 22:50:50
(2 days ago)
Excessive multi-domain requests
Brute-Force
πΊπΈ
nyt
2026-06-08 22:40:13
(2 days ago)
Sensitive File Probe
Web App Attack
π©πͺ
maxpower
2026-06-08 22:24:18
(2 days ago)
(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 34.92.43.11 (HK/Hong Kong/11.43.92.34.bc ...
show more
(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 34.92.43.11 (HK/Hong Kong/11.43.92.34.bc.googleusercontent.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 34.92.43.11 - - [09/Jun/2026:00:24:12 +0200] "GET /config/.env.production HTTP/1.1" 403 146 "-" "Xenu Link Sleuth/1.3.8" "-" host=www.avconsulenze.eu
34.92.43.11 - - [09/Jun/2026:00:24:12 +0200] "GET /app/api/.env HTTP/1.1" 403 146 "-" "Xenu Link Sleuth/1.3.8" "-" host=www.avconsulenze.eu
show less
Port Scan