π³π±
homeshowdomain.nl
2026-06-09 22:00:25
(15 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08.
show less
Web App Attack
SSH
Hacking
πΊπΈ
TPI-Abuse
2026-06-09 15:39:52
(21 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:39:47.969824 2026] [security2:error] [pid 30413:tid 30413] [client 34.97.57.167:46628] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.1healthplace.com.darkcodedesign.net"] [uri "/.git/config"] [unique_id "aigzwwfF1UPiyI3TqUGFDAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 14:59:28
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:59:20.979528 2026] [security2:error] [pid 17151:tid 17151] [client 34.97.57.167:37514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "speedysremodeling.com"] [uri "/.git/config"] [unique_id "aigqSA7JkeK-olZkRpmENQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 13:21:25
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:21:21.157294 2026] [security2:error] [pid 25450:tid 25450] [client 34.97.57.167:52482] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "canfieldnyc.com"] [uri "/.git/config"] [unique_id "aigTUbhCB1KojN0-As9pjAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 12:15:41
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:15:33.631606 2026] [security2:error] [pid 10518:tid 10518] [client 34.97.57.167:59430] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ridgecrestconsultinggroup.com"] [uri "/.git/config"] [unique_id "aigD5VQxpxlo95QrS9z5jgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
big-cloud.nl
2026-06-09 11:27:00
(1 day ago)
Try to access /.git/config
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 10:58:24
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:58:18.766181 2026] [security2:error] [pid 25426:tid 25426] [client 34.97.57.167:54656] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "limpiezadevidriosyoficinas.com"] [uri "/.git/config"] [unique_id "aifxyktTIvZXrClnW9_C_QAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πͺ
cmbplf
2026-06-09 09:40:48
(1 day ago)
9.052 requests with url.path *.git/*
Brute-Force
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-06-09 08:21:41
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:21:33.319396 2026] [security2:error] [pid 3340:tid 3367] [client 34.97.57.167:42012] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dailysavershbg.com"] [uri "/.git/config"] [unique_id "aifNDRClnv5fXCJA0-66VQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
FeG Deutschland
2026-06-09 08:12:54
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 05:18:13
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:18:10.664018 2026] [security2:error] [pid 24534:tid 24534] [client 34.97.57.167:52020] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.raritymountainadventures.com.savingshvac.com"] [uri "/.git/config"] [unique_id "aieiEg9vDNQ1r7NNsTunhgAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 04:46:52
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 00:46:47.247670 2026] [security2:error] [pid 7996:tid 7996] [client 34.97.57.167:48338] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "splashstation.org"] [uri "/.git/config"] [unique_id "aieat-oVEJ6lUGWnU_PV7AAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-06-09 04:35:43
(1 day ago)
34.97.57.167 - - [09/Jun/2026:04:35:42 +0000] "GET /.git/config HTTP/1.1" 302 472 "-" "Mozilla/5.0 ( ...
show more
34.97.57.167 - - [09/Jun/2026:04:35:42 +0000] "GET /.git/config HTTP/1.1" 302 472 "-" "Mozilla/5.0 (Linux; Android 7.0; Moto G (5) Plus Build/NPNS25.137-35-5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.107 Mobile Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 03:50:54
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.97.57.167 (167.57.97.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:50:48.039807 2026] [security2:error] [pid 17587:tid 17587] [client 34.97.57.167:32778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.madburylibrary.org"] [uri "/.git/config"] [unique_id "aieNmFViuOdh3Z4ls_TzjQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
Mga Admin
2026-06-09 02:57:24
(1 day ago)
34.97.57.167 - - [09/Jun/2026:09:57:23 +0700] "GET /.git/config HTTP/1.1" 404 69 "-" "Mozilla/5.0 (L ...
show more
34.97.57.167 - - [09/Jun/2026:09:57:23 +0700] "GET /.git/config HTTP/1.1" 404 69 "-" "Mozilla/5.0 (Linux; Android 9; ONEPLUS A5010) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.143 Mobile Safari/537.36"
...
show less
Web App Attack