๐ณ๐ฑ
homeshowdomain.nl
2026-06-27 22:01:33
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-26.
show less
Web App Attack
SSH
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-06-26 22:01:51
(2 days ago)
Auto-ban: >3000 req/min op 2026-06-26
Web App Attack
SSH
Hacking
๐ง๐ช
cmbplf
2026-06-26 04:35:45
(3 days ago)
1.012 requests with url.path */.git/config
Brute-Force
Bad Web Bot
๐บ๐ธ
mnsf
2026-06-26 03:05:50
(3 days ago)
Scanning/Probing (30)
Brute-Force
Web App Attack
๐จ๐ญ
TheCoon
2026-06-26 03:00:01
(3 days ago)
Automated: Credential theft attempt - JSON bomb served
Web App Attack
Hacking
Anonymous
2026-06-26 02:39:27
(3 days ago)
[osotir.org] httpd-suspicious-path: sites=drasimas.gr; logs=/var/log/httpd/domains/drasimas.gr.log; ...
show more
[osotir.org] httpd-suspicious-path: sites=drasimas.gr; logs=/var/log/httpd/domains/drasimas.gr.log; samples=/.git/config | /www/.git/config | /portal/.git/config
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 02:12:33
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 22:12:28.590096 2026] [security2:error] [pid 5476:tid 5549] [client 35.194.191.253:56424] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "livetalkusa.com"] [uri "/v2/.git/config"] [unique_id "aj3gDLH5jpMstfssrgyHzAAAAQ0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-06-26 01:43:22
(3 days ago)
Web attack/malicious scanning detected
Web App Attack
๐ณ๐ฑ
Savvii
2026-06-26 00:26:23
(3 days ago)
20 attempts against mh-misbehave-ban on mist
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
i-turnradio.nl
2026-06-26 00:10:16
(3 days ago)
2026-06-26 @ 02:10:16 (CET) ~ Blocked for trying to access: /web/.git/config
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 00:04:32
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:04:25.027556 2026] [security2:error] [pid 22698:tid 22720] [client 35.194.191.253:50668] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.newleafpro.com"] [uri "/src/.git/config"] [unique_id "aj3CCRwUF1nU6wxU7b2CCQAAAM8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-25 23:44:48
(3 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 23:32:52
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:32:46.364253 2026] [security2:error] [pid 16017:tid 16017] [client 35.194.191.253:33148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.netcastcorp.com"] [uri "/wp-content/.git/config"] [unique_id "aj26ntGT1fysXvk8n-VKJQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 23:11:11
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:11:05.942231 2026] [security2:error] [pid 26866:tid 26866] [client 35.194.191.253:39538] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.thewritekellys.com"] [uri "/.git/config"] [unique_id "aj21iQamNy_3pnCdHravfAAAAEk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Savvii
2026-06-25 22:47:33
(3 days ago)
20 attempts against mh_ha-misbehave-ban on ec102967
Brute-Force
Bad Web Bot
Web App Attack