๐ณ๐ฑ
homeshowdomain.nl
2026-06-14 22:00:40
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-13.
show less
Web App Attack
SSH
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-06-13 22:02:17
(2 weeks ago)
Auto-ban: >3000 req/min op 2026-06-13
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-13 16:08:58
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 12:08:53.493959 2026] [security2:error] [pid 31883:tid 31883] [client 35.247.169.215:53574] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.w0kem.ewingmissouri.com"] [uri "/.git/config"] [unique_id "ai2Alcp6gdagYA0tITfgfQAAADQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-06-13 14:58:57
(2 weeks ago)
[SatJun1316:58:52.2304532026][security2:error][pid1648368:tid1648619][client35.247.169.215:0]ModSecu ...
show more
[SatJun1316:58:52.2304532026][security2:error][pid1648368:tid1648619][client35.247.169.215:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"sesael.ch.81-17-25-250.cpanel.site\"][uri\"/.git/config\"][unique_id\"ai1wLHD04e3EEjJcCabuCgAAARU\"]
show less
Hacking
Web App Attack
๐ณ๐ฑ
MM-bot
2026-06-13 14:52:37
(2 weeks ago)
URL-probe: HTTP/1.1 GET request on /.git/config (2026-06-13 16:52:37 UTC+2)
Web App Attack
Hacking
๐บ๐ธ
ne1for23
2026-06-13 14:21:30
(2 weeks ago)
Attempting to probe for sensitive information accidently exposed via git config.
35.247.169.215 - - ...
show more
Attempting to probe for sensitive information accidently exposed via git config.
35.247.169.215 - - [13/Jun/2026:14:21:30 +0000] "GET /.git/config HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Linux; Android 9; GM1910) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-13 14:18:45
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 10:18:41.838850 2026] [security2:error] [pid 26453:tid 26453] [client 35.247.169.215:47348] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "directnic.blog"] [uri "/.git/config"] [unique_id "ai1mwVWwAlo4m_uNb_IlXAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 13:51:21
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 09:51:16.165475 2026] [security2:error] [pid 11062:tid 11062] [client 35.247.169.215:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.mail-pmg.com"] [uri "/.git/config"] [unique_id "ai1gVG7oQuVx5qb3tYQWfQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
iNetWorker
2026-06-13 10:18:52
(2 weeks ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 09:59:58
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:59:50.679579 2026] [security2:error] [pid 15985:tid 15985] [client 35.247.169.215:46720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.glaswood.com"] [uri "/.git/config"] [unique_id "ai0qFkOOFDlHXJpzECzHSAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 08:42:45
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 04:42:37.987284 2026] [security2:error] [pid 27784:tid 27784] [client 35.247.169.215:45916] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mitchellfabrication.mitchellamazing.com"] [uri "/.git/config"] [unique_id "ai0X_cCfgfr8Lo0NCy6TbAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-13 08:20:02
(2 weeks ago)
suspicious request in access.log
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 07:36:32
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 03:36:27.732067 2026] [security2:error] [pid 30054:tid 30069] [client 35.247.169.215:33786] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.prmcllc.antidote-it.com"] [uri "/.git/config"] [unique_id "ai0Ie7HAAstH3LPFmY4pTwAAAMY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 06:55:17
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 35.247.169.215 (215.169.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:55:09.235138 2026] [security2:error] [pid 8673:tid 8673] [client 35.247.169.215:34570] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cheynans.com"] [uri "/.git/config"] [unique_id "aiz-zTJ8iVkn81ACzDaDIQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-13 05:06:04
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack