Anonymous
2026-07-06 16:34:27
(1 day ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐ณ๐ฑ
homeshowdomain.nl
2026-07-05 22:02:18
(2 days ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-04.
show less
Web App Attack
SSH
Hacking
๐จ๐ด
adalbertoreyes.org
2026-07-05 15:35:55
(2 days ago)
CategoryPortScan
Port Scan
๐ฌ๐ง
openstrike.co.uk
2026-07-05 05:16:02
(3 days ago)
3 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
๐ฒ๐ฝ
octageeks.com
2026-07-05 04:13:04
(3 days ago)
Wordpress malicious attack:[octablocked]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 01:06:39
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 35.185.134.154 (154.134.185.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.185.134.154 (154.134.185.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 21:06:34.587281 2026] [security2:error] [pid 28973:tid 28973] [client 35.185.134.154:47932] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "voidpope.com"] [uri "/.git/config"] [unique_id "akmuGgf-J_06xTq5E9IGMgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Smish
2026-07-05 00:35:23
(3 days ago)
HONEYPOT HIT --> Fail2ban time=1783211722 log=2026-07-05T01:35:22+01:00 ip=35.185.134.154 host=vmhos ...
show more
HONEYPOT HIT --> Fail2ban time=1783211722 log=2026-07-05T01:35:22+01:00 ip=35.185.134.154 host=vmhost01.mci.as210667.net method=GET uri="/.git/config" status=404 ua="-" ref="-" rid=5422864affbac12053ccbf159f0ecaf4
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 00:33:00
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 35.185.134.154 (154.134.185.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.185.134.154 (154.134.185.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 20:32:56.304393 2026] [security2:error] [pid 6152:tid 6152] [client 35.185.134.154:40294] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vmbinc.com"] [uri "/.git/config"] [unique_id "akmmOJl_kxGbtgDUM2XkHwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 00:07:18
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 35.185.134.154 (154.134.185.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.185.134.154 (154.134.185.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 20:07:12.679173 2026] [security2:error] [pid 14736:tid 14736] [client 35.185.134.154:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vl.365soft.top"] [uri "/.git/config"] [unique_id "akmgMMVCWt_gikJPkTN5WwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-07-04 23:51:46
(3 days ago)
Web attack/malicious scanning detected
Web App Attack
๐ง๐ช
cmbplf
2026-07-04 22:28:21
(3 days ago)
961 requests with url.path *.git/*
950 requests with url.path */.git/config
Brute-Force
Bad Web Bot
๐ซ๐ท
tecnicorioja
2026-07-04 22:01:17
(3 days ago)
(Mod_security)
Web App Attack
Brute-Force
Bad Web Bot
๐ช๐ธ
tutaim.com
2026-07-04 22:00:04
(3 days ago)
โ [05/07/26] This IP has been detected performing multiple attacks on websites (3 attempts blocked). ...
show more
โ [05/07/26] This IP has been detected performing multiple attacks on websites (3 attempts blocked). Potential malicious activity.
show less
Brute-Force
SSH
Web App Attack
FTP Brute-Force
๐ณ๐ฑ
homeshowdomain.nl
2026-07-04 21:59:12
(3 days ago)
Auto-ban: >3000 req/min op 2026-07-04
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-04 21:10:55
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 35.185.134.154 (154.134.185.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.185.134.154 (154.134.185.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 17:10:51.211170 2026] [security2:error] [pid 20349:tid 20349] [client 35.185.134.154:34428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ultimatesportswrap.com"] [uri "/.git/config"] [unique_id "akl228KJ8W7rJqY0HR3S0wAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack