Anonymous
2026-07-08 00:07:28
(1 day ago)
"GET /.git/config HTTP/1.1"
Hacking
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-07 21:59:53
(1 day ago)
Auto-ban: >3000 req/min op 2026-07-07
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-07 19:40:22
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.147.23 (23.147.221.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.147.23 (23.147.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 15:40:16.110601 2026] [security2:error] [pid 9206:tid 9206] [client 35.221.147.23:43612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shafie.net"] [uri "/.git/config"] [unique_id "ak1WIPEO8RmxPsa9SEB5iwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Shadymint
2026-07-07 19:39:32
(1 day ago)
url probing from IP marked as abusive
Web App Attack
๐ง๐ท
P1n4
2026-07-07 19:17:59
(1 day ago)
Heimdal IDS auto-block: sensitive_file (score=0.90)
Web App Attack
Anonymous
2026-07-07 19:17:04
(1 day ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 19:02:37
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.147.23 (23.147.221.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.147.23 (23.147.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 15:02:32.582356 2026] [security2:error] [pid 12377:tid 12377] [client 35.221.147.23:36052] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sfholidayrentals.com"] [uri "/.git/config"] [unique_id "ak1NSFJPmDzzP6YUpizn9AAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-07-07 18:40:05
(1 day ago)
Unauthorized access to webpage admin
Web App Attack
๐บ๐ธ
moppetto
2026-07-07 18:27:01
(1 day ago)
.git/config credential scraping; GET /.git/config
Bad Web Bot
๐ธ๐ช
SkyDancer
2026-07-07 18:19:55
(1 day ago)
Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by Sk ...
show more
Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by SkyDancer Ai. EXT-SYS-Vx
show less
Hacking
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-07-07 18:12:04
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.147.23 (23.147.221.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.147.23 (23.147.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 14:11:57.533059 2026] [security2:error] [pid 1277:tid 1277] [client 35.221.147.23:51026] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sessionsdispensary.com.modeltdr.com"] [uri "/.git/config"] [unique_id "ak1BbY_4VqtOW1y_RR82EAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-07 18:02:49
(1 day ago)
Sensitive file access attempt
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-07 17:55:37
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.147.23 (23.147.221.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.147.23 (23.147.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 13:55:33.570043 2026] [security2:error] [pid 29899:tid 29899] [client 35.221.147.23:60350] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "serviciosjireh.cl"] [uri "/.git/config"] [unique_id "ak09la64otG9fWZRxIVNLAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
as211431.net
2026-07-07 17:54:17
(1 day ago)
Triggered Cloudflare WAF (firewallCustom) from TW.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from TW.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/config
UA: Empty string
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
etu brutus
2026-07-07 17:36:22
(1 day ago)
35.221.147.23 has been banned for [WebApp Attack]
...
Hacking
Bad Web Bot
Web App Attack