๐ณ๐ฑ
homeshowdomain.nl
2026-06-09 22:03:13
(3 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-09 16:31:20
(3 weeks ago)
(mod_security) mod_security (id:949110) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:949110) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 12:31:13.202073 2026] [security2:error] [pid 30541:tid 30541] [client 35.220.215.141:37066] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "darksecretvideo.com"] [uri "/.git/config"] [unique_id "aig_0WmflYmrxhb0r5JrgQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 13:56:50
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:56:43.550095 2026] [security2:error] [pid 31578:tid 31578] [client 35.220.215.141:51132] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgeberkedesign.com"] [uri "/.git/config"] [unique_id "aigbm-fODo-nSlnwJ4AyJAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Axel
2026-06-09 13:23:14
(3 weeks ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/config ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/config Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-06-09 13:04:37
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:04:32.953580 2026] [security2:error] [pid 15819:tid 15819] [client 35.220.215.141:54618] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "freightmotivity.com"] [uri "/.git/config"] [unique_id "aigPYFSgyNfiTzBytXt2VQAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-06-09 12:31:08
(3 weeks ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 35.220.215.141 (HK/Hong Kong/141.21 ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 35.220.215.141 (HK/Hong Kong/141.215.220.35.bc.googleusercontent.com): 1 in the last 3600 secs
show less
Web App Attack
๐จ๐ญ
4server
2026-06-09 10:34:08
(3 weeks ago)
[TueJun0912:34:06.0092452026][security2:error][pid632167:tid632445][client35.220.215.141:0]ModSecuri ...
show more
[TueJun0912:34:06.0092452026][security2:error][pid632167:tid632445][client35.220.215.141:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"salonesamire.ch\"][uri\"/.git/config\"][unique_id\"aifsHvUygZV65XyjD-YxwAAAARg\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 09:07:41
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:07:35.817792 2026] [security2:error] [pid 2358:tid 2358] [client 35.220.215.141:54298] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "technlunch.ahijado.org"] [uri "/.git/config"] [unique_id "aifX18_2n3qF8O2fSworHAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 07:55:51
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 03:55:47.569657 2026] [security2:error] [pid 21429:tid 21429] [client 35.220.215.141:44144] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.forsaleincr.com"] [uri "/.git/config"] [unique_id "aifHA9M31jH60OdCa5pLsAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 00:46:11
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 20:46:04.050135 2026] [security2:error] [pid 5430:tid 5521] [client 35.220.215.141:58592] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fix4life.com"] [uri "/.git/config"] [unique_id "aidiTOONqRC8Of8EEu2ssAAAAkI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-08 22:06:43
(3 weeks ago)
Auto-ban: >3000 req/min op 2026-06-08
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-08 20:45:39
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 16:45:30.936196 2026] [security2:error] [pid 15079:tid 15088] [client 35.220.215.141:43074] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.nicholsinvest.com"] [uri "/.git/config"] [unique_id "aicp6guqLAWR7Aau5y0eFAAAAIc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐น๐ท
Threat.live
2026-06-08 19:35:02
(3 weeks ago)
Suspicious Connection Attempts
Brute-Force
๐ฉ๐ช
bescared
2026-06-08 19:06:53
(3 weeks ago)
F2B - Malicious activity detected. URL Probing. -8ff06ede-
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 16:52:21
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.220.215.141 (141.215.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:52:14.528821 2026] [security2:error] [pid 19207:tid 19207] [client 35.220.215.141:37742] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.restaurantfixture.com.restaurantfurnituremart.com"] [uri "/.git/config"] [unique_id "aibzPgeYySsn5SHCkOPoHAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack