๐บ๐ธ
TPI-Abuse
2026-06-09 01:56:31
(57 minutes ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:56:27.581751 2026] [security2:error] [pid 7938:tid 7938] [client 35.194.79.97:60498] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aspotoftea.littlehorndesign.com"] [uri "/.git/config"] [unique_id "aidyywCt2cmLKtGdbzwV7wAAAHI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 01:28:01
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:27:53.669171 2026] [security2:error] [pid 23165:tid 23165] [client 35.194.79.97:55600] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "birdlovers.net"] [uri "/.git/config"] [unique_id "aidsGece3UJxdfZ8dwt6XQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-08 22:08:05
(4 hours ago)
Auto-ban: >3000 req/min op 2026-06-08
Web App Attack
SSH
Hacking
๐ณ๐ฟ
Antinson
2026-06-08 18:07:11
(8 hours ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐จ๐ญ
4server
2026-06-08 17:28:24
(9 hours ago)
[MonJun0819:28:19.4133792026][security2:error][pid1078430:tid1078739][client35.194.79.97:0]ModSecuri ...
show more
[MonJun0819:28:19.4133792026][security2:error][pid1078430:tid1078739][client35.194.79.97:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"foodelivery.benvenutialfood.ch\"][uri\"/.git/config\"][unique_id\"aib7szv2C6--336thIk8ogAAARI\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 16:14:33
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:14:29.659717 2026] [security2:error] [pid 27596:tid 27596] [client 35.194.79.97:49142] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.test.grimone.com"] [uri "/.git/config"] [unique_id "aibqZUN4JseCwcNKpRRcAgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 15:34:25
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 11:34:18.885041 2026] [security2:error] [pid 17002:tid 17002] [client 35.194.79.97:52768] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.amazingthailand.net.convoyforkids.com"] [uri "/.git/config"] [unique_id "aibg-rZ25EN4MCX9rwlRyQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 12:11:30
(14 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 08:11:23.252668 2026] [security2:error] [pid 12514:tid 12514] [client 35.194.79.97:43414] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anamericanabroad.com"] [uri "/.git/config"] [unique_id "aiaxa3QZgAi0svmlEqgeVwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 11:06:44
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:06:40.274148 2026] [security2:error] [pid 21330:tid 21330] [client 35.194.79.97:41918] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agroeurocommodities.com.asiancommoditiescorporation.com"] [uri "/.git/config"] [unique_id "aiaiQMUkTnjXK02wYLgKtQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
lakered
2026-06-08 10:45:25
(16 hours ago)
Detectors: [NGINX] | Reasons: Nginx Honeypot: Sensitive configuration file search | Tech Evidence: J ...
show more
Detectors: [NGINX] | Reasons: Nginx Honeypot: Sensitive configuration file search | Tech Evidence: JA4H: 355b62fe6be234ddfe36363ee91b9925, Incomplete-Browser-Profile (Missing: Accept, Accept-Language), TLS-JA4-Spoofing-Detected (UA claims Browser but JA4 reports No-HTTP/2: t13d190900), JA4: t13d190900 | UA: Mozilla/5.0 (Linux; Android 8.0.0; SM-A600FN) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 09:40:36
(17 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 05:40:32.902450 2026] [security2:error] [pid 12113:tid 12147] [client 35.194.79.97:50914] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.resort4pets.petsentiments.com"] [uri "/.git/config"] [unique_id "aiaOEEJas2q6SBFUNd0UNgAAAFQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-08 09:30:43
(17 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 07:59:32
(18 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:59:23.841590 2026] [security2:error] [pid 394:tid 394] [client 35.194.79.97:49612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.joshuarawlings.mark.rawlings.name"] [uri "/.git/config"] [unique_id "aiZ2W7e4EOYs1AQcbemmEwAAAC8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 07:38:35
(19 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 35.194.79.97 (97.79.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:38:30.308339 2026] [security2:error] [pid 24917:tid 24917] [client 35.194.79.97:42700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adelaidapacific.com"] [uri "/.git/config"] [unique_id "aiZxdlh6ECkQ-SiBmNQD_gAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-06-08 07:35:02
(19 hours ago)
suspicious request in access.log
Web App Attack