π¨π
TheCoon
2026-06-10 07:15:02
(1 week ago)
Automated: Credential theft attempt - JSON bomb served
Web App Attack
Hacking
π³π±
homeshowdomain.nl
2026-06-09 22:00:50
(1 week ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08.
show less
Web App Attack
SSH
Hacking
π«π·
Baking333
2026-06-09 12:38:42
(1 week ago)
[redacted] 34.97.175.100 - - [09/Jun/2026:12:48:32 +0100] "GET /.git/config HTTP/1.1" 302 5273 0/156 ...
show more
[redacted] 34.97.175.100 - - [09/Jun/2026:12:48:32 +0100] "GET /.git/config HTTP/1.1" 302 5273 0/156106 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 UBrowser/6.2.4098.3 Safari/537.36" [redacted] 34.97.175.100 - - [09/Jun/2026:13:38:41 +0100] "GET /.git/config HTTP/1.1" 302 1538 0/116665 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.86 Safari/537.36"
show less
Bad Web Bot
Web App Attack
2026-06-09 10:10:02
(1 week ago)
34.97.175.100 - - [09/Jun/2026:18:10:01 +0800] "GET /.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 ...
show more
34.97.175.100 - - [09/Jun/2026:18:10:01 +0800] "GET /.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/71.0.3578.98 Chrome/71.0.3578.98 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 09:28:05
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:28:01.690474 2026] [security2:error] [pid 16776:tid 16776] [client 34.97.175.100:44014] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emmlogistics.com"] [uri "/.git/config"] [unique_id "aifcoQuAJFssOtCcI6Oq3AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
masterguru
2026-06-09 08:26:17
(1 week ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.97.175.100 (JP/Japan/100.175.97.34 ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.97.175.100 (JP/Japan/100.175.97.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195)
show less
Hacking
π¨π
ALPHANET
2026-06-09 08:26:15
(1 week ago)
web exploits
Hacking
Exploited Host
Web App Attack
π§πͺ
voormedia
2026-06-09 07:26:47
(1 week ago)
Accessed trap at '/.git/config'
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 07:04:45
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 03:04:37.709117 2026] [security2:error] [pid 2593:tid 2593] [client 34.97.175.100:60602] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "janton.com"] [uri "/.git/config"] [unique_id "aie7BZwIc9gVorwpZKyGigAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
4server
2026-06-09 06:23:31
(1 week ago)
[TueJun0908:23:24.9405602026][security2:error][pid3964852:tid3965071][client34.97.175.100:0]ModSecur ...
show more
[TueJun0908:23:24.9405602026][security2:error][pid3964852:tid3965071][client34.97.175.100:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"cpcalendars.aeapcl.ch\"][uri\"/.git/config\"][unique_id\"aiexXPN8v6Kgk5y2T_P65wAAAIs\"]
show less
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 06:15:42
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 02:15:39.421607 2026] [security2:error] [pid 32023:tid 32023] [client 34.97.175.100:55294] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pilates-slings.eu"] [uri "/.git/config"] [unique_id "aievi3-wMHixeYi2XL1W1AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 05:23:32
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:23:27.290212 2026] [security2:error] [pid 4970:tid 4970] [client 34.97.175.100:42182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "diamondtrailerserv.com"] [uri "/.git/config"] [unique_id "aiejT2BmtXhMrBk424mewwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³πΏ
Antinson
2026-06-09 04:40:44
(1 week ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
π¨π¦
TechnoSolutions CL
2026-06-09 04:38:23
(1 week ago)
34.97.175.100 - - [09/Jun/2026:04:38:19 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (W ...
show more
34.97.175.100 - - [09/Jun/2026:04:38:19 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.94 Safari/537.36"
34.97.175.100 - - [09/Jun/2026:04:38:22 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.87 Safari/537.36"
...
show less
Hacking
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 04:17:37
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.175.100 (100.175.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 00:17:33.867559 2026] [security2:error] [pid 32446:tid 32446] [client 34.97.175.100:40250] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "earlyfordv8crrg10.com"] [uri "/.git/config"] [unique_id "aieT3QEtndbhDa3X698xmwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack