π³π±
homeshowdomain.nl
2026-06-15 22:03:14
(5 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14.
show less
Web App Attack
SSH
Hacking
2026-06-15 12:30:21
(14 hours ago)
"GET /static/.git/config HTTP/1.1"
Hacking
Web App Attack
π©πͺ
Dominik Lysiak
2026-06-15 05:54:05
(21 hours ago)
35.220.140.63 - - [15/Jun/2026:07:54:04 +0200] "GET /laravel/.git/config HTTP/1.1" 404 274 "-" "Mozi ...
show more
35.220.140.63 - - [15/Jun/2026:07:54:04 +0200] "GET /laravel/.git/config HTTP/1.1" 404 274 "-" "Mozilla/5.0 (X11; U; Linux x86_64; en-US) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.114 Safari/537.36 Puffin/4.5.0IT"
35.220.140.63 - - [15/Jun/2026:07:54:04 +0200] "GET /wp-content/.git/config HTTP/1.1" 404 274 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.94 Safari/537.36"
35.220.140.63 - - [15/Jun/2026:07:54:04 +0200] "GET /symfony/.git/config HTTP/1.1" 404 274 "-" "Mozilla/5.0 (Linux; Android 8.1.0; Redmi 5 Plus) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"
...
show less
Web App Attack
π³π±
Site.eu
2026-06-15 05:50:51
(21 hours ago)
Excessive multi-domain requests
Brute-Force
2026-06-15 05:38:52
(21 hours ago)
35.220.140.63 - - [15/Jun/2026:07:38:46 +0200] "GET /portal/.git/config HTTP/1.1" 403 177 "-" "Mozil ...
show more
35.220.140.63 - - [15/Jun/2026:07:38:46 +0200] "GET /portal/.git/config HTTP/1.1" 403 177 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.80 Safari/537.36"
35.220.140.63 - - [15/Jun/2026:07:38:46 +0200] "GET /public/.git/config HTTP/1.1" 403 117 "-" "Mozilla/5.0 (X11; U; Linux; i686; en-US; rv:1.6) Gecko Debian/1.6-7"
35.220.140.63 - - [15/Jun/2026:07:38:46 +0200] "GET /backend/.git/config HTTP/1.1" 403 117 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1.1 Safari/605.1.15"
...
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-15 04:56:33
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 00:56:28.901554 2026] [security2:error] [pid 27101:tid 27202] [client 35.220.140.63:45348] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.computeinitiative.org"] [uri "/api/.git/config"] [unique_id "ai-F_JT-J3ewNOsQIFu5dgAAAJA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Feelautom
2026-06-15 04:33:31
(22 hours ago)
[FeelAutom Auto-Ban] PathScan: /frontend/.git/config (Score: 200)
Port Scan
π«π·
masterguru
2026-06-15 04:32:07
(22 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
π¬π§
consul.to
2026-06-15 04:01:31
(23 hours ago)
Web attack/malicious scanning detected
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-15 03:33:49
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:33:41.667598 2026] [security2:error] [pid 1423:tid 1423] [client 35.220.140.63:60588] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "malamutian.net"] [uri "/app/.git/config"] [unique_id "ai9ylQ4ig5H9q3Eu2cG02gAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
excill
2026-06-15 03:07:41
(1 day ago)
Honeypot mesh observed 1033 attack events in 24h β cowrie/dionaea/heralding/suricata
Port Scan
Hacking
Brute-Force
SSH
πΊπΈ
TPI-Abuse
2026-06-15 02:33:11
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:33:05.605377 2026] [security2:error] [pid 2212:tid 2212] [client 35.220.140.63:35926] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.bbrd.net"] [uri "/assets/.git/config"] [unique_id "ai9kYYu8J9bfr9FrInX0-wAAADw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
SCHAPPY
2026-06-15 01:33:03
(1 day ago)
Probing for non-installed web apps or current vulnerabilities.
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-15 01:29:14
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:29:10.439091 2026] [security2:error] [pid 17356:tid 17356] [client 35.220.140.63:43188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.groundcontrolmarketing.georgetownca.com"] [uri "/v3/.git/config"] [unique_id "ai9VZjnKL1IYKmCilScFvgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-15 00:45:41
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.140.63 (63.140.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 20:45:37.217511 2026] [security2:error] [pid 25609:tid 25609] [client 35.220.140.63:50136] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohiohca.com"] [uri "/app/.git/config"] [unique_id "ai9LMQuQipimpP19J9IVoQAAAGA"]
show less
Brute-Force
Bad Web Bot
Web App Attack