๐ณ๐ฑ
homeshowdomain.nl
2026-06-14 22:02:27
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-13.
show less
Web App Attack
SSH
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-06-13 22:00:54
(2 weeks ago)
Auto-ban: >3000 req/min op 2026-06-13
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-13 16:09:05
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 12:08:58.059346 2026] [security2:error] [pid 11063:tid 11063] [client 35.194.191.215:44078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.aares2026.net"] [uri "/.git/config"] [unique_id "ai2AmmYGfxJx_FifQBT-kwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
iNetWorker
2026-06-13 15:39:26
(2 weeks ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 07:50:57
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 03:50:49.811670 2026] [security2:error] [pid 15444:tid 15444] [client 35.194.191.215:58806] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "reconsideringfear.com"] [uri "/.git/config"] [unique_id "ai0L2b4Y67LHIGsdui_n2wAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 07:05:22
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 03:05:18.283567 2026] [security2:error] [pid 31042:tid 31042] [client 35.194.191.215:47344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aandsmetal.com"] [uri "/.git/config"] [unique_id "ai0BLkfoqbAh49iKWgQbkwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-06-13 06:20:12
(2 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 05:47:35
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 01:47:28.924060 2026] [security2:error] [pid 19692:tid 19710] [client 35.194.191.215:37174] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dermatologycoloradosprings.com"] [uri "/.git/config"] [unique_id "aizu8CSKcWlaWAJ0GPSl_AAAAIw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-13 05:07:40
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 05:00:47
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 01:00:39.993155 2026] [security2:error] [pid 27254:tid 27254] [client 35.194.191.215:51802] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelmoorefield.com"] [uri "/.git/config"] [unique_id "aizj9zjfM86n7enEmARiuAAAADI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 04:33:26
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.215 (215.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:33:22.543935 2026] [security2:error] [pid 2167:tid 2167] [client 35.194.191.215:54530] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bccnews.starrmail.net"] [uri "/.git/config"] [unique_id "aizdkmz7Q7t2GAdhdJv8LwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
4server
2026-06-13 03:50:15
(2 weeks ago)
[SatJun1305:50:13.0934372026][security2:error][pid523553:tid523690][client35.194.191.215:0]ModSecuri ...
show more
[SatJun1305:50:13.0934372026][security2:error][pid523553:tid523690][client35.194.191.215:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.balso.autoeuro.lv\"][uri\"/.git/config\"][unique_id\"aizTdV4fMOtMId3FGHxxPQAAARg\"]
show less
Port Scan
Brute-Force
Web App Attack