๐ณ๐ฑ
homeshowdomain.nl
2026-06-09 22:04:54
(3 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08.
show less
Web App Attack
SSH
Hacking
๐ซ๐ท
masterguru
2026-06-09 14:35:54
(3 weeks ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 35.240.150.190 (SG/Singapore/190.150. ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 35.240.150.190 (SG/Singapore/190.150.240.35.bc.googleusercontent.com): 1 in the last 3600 secs (0-195)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-09 14:11:01
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:10:53.516161 2026] [security2:error] [pid 12712:tid 12712] [client 35.240.150.190:55338] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cauchosindustrialesespeciales.com"] [uri "/.git/config"] [unique_id "aige7WoOn9Zq9wvgF5dx-wAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 10:56:18
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:56:11.887409 2026] [security2:error] [pid 26938:tid 26938] [client 35.240.150.190:40772] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "reelfruits.com"] [uri "/.git/config"] [unique_id "aifxS5NbTsaXfuEM6KuLIgAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-06-09 09:51:03
(3 weeks ago)
[TueJun0911:50:57.4129032026][security2:error][pid494529:tid495013][client35.240.150.190:0]ModSecuri ...
show more
[TueJun0911:50:57.4129032026][security2:error][pid494529:tid495013][client35.240.150.190:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.rd-gaming.net.81-17-25-250.cpanel.site\"][uri\"/.git/config\"][unique_id\"aifiAR6ytC6-VSzYL-T-LgAAAAc\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 09:17:39
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:17:34.859495 2026] [security2:error] [pid 16442:tid 16442] [client 35.240.150.190:43044] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teamgravity.ca.kanata.ws"] [uri "/.git/config"] [unique_id "aifaLm5pU1MFOG3CTboEcgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 09:00:25
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:00:21.225023 2026] [security2:error] [pid 26822:tid 26846] [client 35.240.150.190:44034] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "frannykingsmith.com.sloveniaflyfishing.com"] [uri "/.git/config"] [unique_id "aifWJVV_bmoQsqgvjwCP6wAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-06-09 08:51:29
(3 weeks ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-09 08:15:49
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:15:44.337481 2026] [security2:error] [pid 4045:tid 4045] [client 35.240.150.190:42684] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waleed.co"] [uri "/.git/config"] [unique_id "aifLsLtqKpBQ4wJIl3WuewAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 07:32:15
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 03:32:10.762596 2026] [security2:error] [pid 13413:tid 13413] [client 35.240.150.190:38982] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fatbastardcompetition.com"] [uri "/.git/config"] [unique_id "aifBehrudx8Tc3Tz2p4wkwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Blexyel
2026-06-09 04:50:37
(3 weeks ago)
35.240.150.190 - - [09/Jun/2026:06:50:37 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 ...
show more
35.240.150.190 - - [09/Jun/2026:06:50:37 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 12_3_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 MicroMessenger/7.0.5(0x17000523) NetType/4G Language/zh_CN" "pingusmc.org"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 04:24:52
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 00:24:46.285330 2026] [security2:error] [pid 22459:tid 22471] [client 35.240.150.190:39510] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.certifiedprojectmanager.eu.aafm.us"] [uri "/.git/config"] [unique_id "aieVjjKz3p-qwI2lElYhQwAAAQg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-09 04:20:01
(3 weeks ago)
suspicious request in access.log
Web App Attack
๐บ๐ธ
xxkodedxx
2026-06-09 03:37:48
(3 weeks ago)
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 2ร edge-block in 10 ...
show more
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 2ร edge-block in 10m window.
Origin: SG / AS396982 Google LLC
Active: 03:36:48โ03:36:50 UTC
Volume: 2 HTTP req
Probed: /.git/config
Status mix: 444ร2
UA: "Mozilla/5.0 (iPad; CPU OS 12_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/76.0.3809.81 Mobile/15E148 Safari/605.1"
Auto-banned 30d. zorvexus-banner.
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 03:22:52
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.240.150.190 (190.150.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:22:46.662147 2026] [security2:error] [pid 28679:tid 28679] [client 35.240.150.190:44820] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "amfa76.com"] [uri "/.git/config"] [unique_id "aieHBpMtsN-GubdHqqf50wAAACw"]
show less
Brute-Force
Bad Web Bot
Web App Attack