๐ณ๐ฑ
homeshowdomain.nl
2026-03-03 22:59:55
(4 months ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-03-02.
show less
Web App Attack
SSH
Hacking
Anonymous
2026-03-03 09:00:29
(4 months ago)
HACK
Brute-Force
Anonymous
2026-03-03 06:17:11
(4 months ago)
<jail> banned by fail2ban
Brute-Force
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2026-03-03 06:14:46
(4 months ago)
2 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
๐ณ๐ฑ
jjnxpct
2026-03-03 04:52:56
(4 months ago)
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ...
show more
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.git/config (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .git/ found within REQUEST_FILENAME: /.git/config]
show less
Web App Attack
Hacking
๐ซ๐ฎ
oh.mg
2026-03-02 23:10:28
(4 months ago)
[Tue Mar 03 00:10:27.891259 2026] [security2:error] [pid 2603699:tid 2603731] [client 35.237.135.219 ...
show more
[Tue Mar 03 00:10:27.891259 2026] [security2:error] [pid 2603699:tid 2603731] [client 35.237.135.219:46934] [client 35.237.135.219] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "www.mrman.co.uk"] [uri "/.git/config"] [unique_id "aaYY44I3HuN5v3a3bT4oWgAAARc"]
...
show less
Web App Attack
Bad Web Bot
๐ฉ๐ช
Ba-Yu
2026-03-02 23:00:09
(4 months ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-03-02 22:59:56
(4 months ago)
Auto-ban: >3000 req/min op 2026-03-02
Web App Attack
SSH
Hacking
๐ฉ๐ช
Kreapptivo
2026-03-02 22:31:42
(4 months ago)
[02/Mar/2026:23:31:40 +0100] Web-Request: "GET /.git/config", User-Agent: "-"
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-02 22:29:15
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 35.237.135.219 (219.135.237.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.237.135.219 (219.135.237.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 02 17:29:09.883411 2026] [security2:error] [pid 2211:tid 2211] [client 35.237.135.219:39582] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.morethanvoting.com.lakesidedetectiveagency.com"] [uri "/.git/config"] [unique_id "aaYPNYiUMerrembF7MQmBQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-03-02 22:26:50
(4 months ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)
Hacking
Web App Attack
๐ต๐ฑ
IROK
2026-03-02 21:50:23
(4 months ago)
Malware/WebShell Scan blocked by ModSecurity
...
Hacking
๐บ๐ธ
TPI-Abuse
2026-03-02 21:45:35
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 35.237.135.219 (219.135.237.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.237.135.219 (219.135.237.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 02 16:45:29.794097 2026] [security2:error] [pid 14238:tid 14238] [client 35.237.135.219:60698] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mofcolorado.com.mykelmilur.com"] [uri "/.git/config"] [unique_id "aaYE-ez86qOnQcIqeNHtxAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-02 21:11:44
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 35.237.135.219 (219.135.237.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.237.135.219 (219.135.237.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 02 16:11:41.427233 2026] [security2:error] [pid 9726:tid 10124] [client 35.237.135.219:32960] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mmr.omegaoak.com"] [uri "/.git/config"] [unique_id "aaX9DSl1czcMVX24IPVJRwAAAEo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
oh.mg
2026-03-02 21:10:37
(4 months ago)
[Mon Mar 02 22:10:34.773111 2026] [security2:error] [pid 984420:tid 984439] [client 35.237.135.219:3 ...
show more
[Mon Mar 02 22:10:34.773111 2026] [security2:error] [pid 984420:tid 984439] [client 35.237.135.219:34244] [client 35.237.135.219] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "www.mmn.cat"] [uri "/.git/config"] [unique_id "aaX8yuWcIaWwsIebsy9SvAAAAFE"]
[Mon Mar 02 22:10:36.801565 2026] [security2:error] [pid 4030735:tid 4030746] [client 35.237.135.219:46680] [client 35.237.135.219] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"]
...
show less
Web App Attack
Bad Web Bot