๐ณ๐ฑ
homeshowdomain.nl
2026-07-08 21:59:36
(17 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-07.
show less
Web App Attack
SSH
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-07-07 21:59:23
(1 day ago)
Auto-ban: >3000 req/min op 2026-07-07
Web App Attack
SSH
Hacking
Anonymous
2026-07-07 20:17:15
(1 day ago)
Fuzzing/Looking for credentials files.
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 19:40:55
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 15:40:48.630116 2026] [security2:error] [pid 11248:tid 11248] [client 35.221.255.222:45676] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shipdirect.gulftelecom.com"] [uri "/.git/config"] [unique_id "ak1WQIL6CgAWj-FtYLHzYwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
beon
2026-07-07 19:33:14
(1 day ago)
[DateTime=>2026-07-07T19:33:14Z (UTC)] , [HoneyPot_Hit=>once] , [HoneyPot=>/.git/config] , [total_Hi ...
show more
[DateTime=>2026-07-07T19:33:14Z (UTC)] , [HoneyPot_Hit=>once] , [HoneyPot=>/.git/config] , [total_Hit=>once]
show less
Bad Web Bot
Web App Attack
Hacking
๐ฏ๐ต
warudora
2026-07-07 19:19:42
(1 day ago)
Automated Honeypot Trap: Attempted to access sensitive path '/.git/config' on a Flask server.
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 19:09:33
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 15:09:25.037721 2026] [security2:error] [pid 13015:tid 13015] [client 35.221.255.222:45036] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sh.handyrehab.com"] [uri "/.git/config"] [unique_id "ak1O5VHEKQSCpfpomcL41gAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
sdos.es
2026-07-07 18:58:15
(1 day ago)
"Restricted File Access Attempt - Matched Data: /.git/ found within REQUEST_FILENAME: /.git/config"
Web App Attack
๐ฉ๐ช
ITSNF
2026-07-07 18:50:05
(1 day ago)
Blocked by os-abuseipdb; 3 hits, proto=tcp, ports=443
Port Scan
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-07 18:17:03
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 14:17:00.140072 2026] [security2:error] [pid 26454:tid 26454] [client 35.221.255.222:42844] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sharlenejensen.com"] [uri "/.git/config"] [unique_id "ak1CnB7zfK7q4rwyrJ3UvwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-07 18:14:02
(1 day ago)
35.221.255.222 - - [07/Jul/2026:20:14:01 +0200] "GET /.git/config HTTP/1.1" 402 3443 "-" "-" ...
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-07 18:03:24
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12
Exploited Host
Web App Attack
๐ฉ๐ช
Bedios GmbH
2026-07-07 17:56:40
(1 day ago)
Login credentials theft attempt
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-07 17:28:02
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 13:27:58.423190 2026] [security2:error] [pid 27679:tid 27679] [client 35.221.255.222:35144] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shakenbait.com.bonefrog.com"] [uri "/.git/config"] [unique_id "ak03HvxOj-dpVE8IzscgOAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 15:39:46
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.221.255.222 (222.255.221.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 11:39:41.135124 2026] [security2:error] [pid 3031:tid 3031] [client 35.221.255.222:43812] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thehiddengemmalta.com"] [uri "/.git/config"] [unique_id "ak0dvX7p5JYrMRexcQEi_wAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack