๐ณ๐ฑ
homeshowdomain.nl
2026-06-30 22:00:44
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-29.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-29 09:03:19
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.95.246.178 (178.246.95.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.95.246.178 (178.246.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 05:03:12.199778 2026] [security2:error] [pid 27570:tid 27570] [client 34.95.246.178:58158] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.wherecaniget.xyz"] [uri "/www/.git/config"] [unique_id "akI00NQoB2YrHvlsa6zHWAAAACg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 05:32:24
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.95.246.178 (178.246.95.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.95.246.178 (178.246.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 01:32:18.687135 2026] [security2:error] [pid 15137:tid 15137] [client 34.95.246.178:46992] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.janton.com"] [uri "/src/.git/config"] [unique_id "akIDYisqaLTJl_FqCZ1voAAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
wteiken
2026-06-29 03:12:13
(3 days ago)
2026-06-28T23:12:13.086685-04:00 rocinante.teiken.net kernel: [521998.154409] syn_limit:IN=ens5 OUT= ...
show more
2026-06-28T23:12:13.086685-04:00 rocinante.teiken.net kernel: [521998.154409] syn_limit:IN=ens5 OUT= MAC=0a:ff:cf:a1:a5:bb:0a:f3:ae:05:2f:b7:08:00 SRC=34.95.246.178 DST=192.168.16.119 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=37182 DF PROTO=TCP SPT=55504 DPT=80 WINDOW=65320 RES=0x00 SYN URGP=0
2026-06-28T23:12:13.094261-04:00 rocinante.teiken.net kernel: [521998.162018] syn_limit:IN=ens5 OUT= MAC=0a:ff:cf:a1:a5:bb:0a:f3:ae:05:2f:b7:08:00 SRC=34.95.246.178 DST=192.168.16.119 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=57323 DF PROTO=TCP SPT=55510 DPT=80 WINDOW=65320 RES=0x00 SYN URGP=0
2026-06-28T23:12:13.103465-04:00 rocinante.teiken.net kernel: [521998.169535] syn_limit:IN=ens5 OUT= MAC=0a:ff:cf:a1:a5:bb:0a:f3:ae:05:2f:b7:08:00 SRC=34.95.246.178 DST=192.168.16.119 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=62281 DF PROTO=TCP SPT=55516 DPT=80 WINDOW=65320 RES=0x00 SYN URGP=0
2026-06-28T23:12:13.104386-04:00 rocinante.teiken.net kernel: [521998.174515] syn_limit:IN=ens5 OUT= MAC=0a:ff:cf:a1:a5:bb:0a:f3:a
...
show less
Port Scan
๐ฌ๐ง
knock
2026-06-29 02:36:56
(3 days ago)
Knock-Knock honeypot brute-force: proto8 (41 total hits)
Brute-Force
๐ซ๐ท
Catalin Negru
2026-06-29 02:14:31
(3 days ago)
2026-06-29 05:14:30,761 fail2ban.actions [2945670]: NOTICE [apache-dirscan] Ban 34.95.246.17 ...
show more
2026-06-29 05:14:30,761 fail2ban.actions [2945670]: NOTICE [apache-dirscan] Ban 34.95.246.178
2026-06-29 05:14:30,992 fail2ban.actions [2945670]: NOTICE [web-scanner] Ban 34.95.246.178
2026-06-29 05:14:31,081 fail2ban.actions [2945670]: NOTICE [apache-scan] Ban 34.95.246.178
2026-06-29 05:14:31,288 fail2ban.actions [2945670]: NOTICE [apache-security] Ban 34.95.246.178
2026-06-29 05:14:31,310 fail2ban.actions [2945670]: NOTICE [apache-404] Ban 34.95.246.178
...
show less
Brute-Force
Web App Attack
๐ณ๐ฟ
Antinson
2026-06-29 01:11:16
(3 days ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐ณ๐ฑ
debestelapp
2026-06-29 00:10:09
(3 days ago)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 23:49:57
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.95.246.178 (178.246.95.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.95.246.178 (178.246.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 19:49:52.454959 2026] [security2:error] [pid 25148:tid 25148] [client 34.95.246.178:33570] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "guarinofurnituredesigns.com"] [uri "/site/.git/config"] [unique_id "akGzIDBsQDR08tLPD39V2gAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 23:24:46
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.95.246.178 (178.246.95.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.95.246.178 (178.246.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 19:24:38.189986 2026] [security2:error] [pid 25583:tid 25583] [client 34.95.246.178:40868] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nacuajo.com"] [uri "/v3/.git/config"] [unique_id "akGtNgLvF2vjHF9DOvHfaAAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack