๐ณ๐ฑ
homeshowdomain.nl
2025-12-05 23:01:43
(7 months ago)
Auto-ban: >3000 req/min op 2025-12-05
Hacking
Web App Attack
SSH
๐ณ๐ฑ
Savvii
2025-12-05 08:49:44
(7 months ago)
15 attempts against mh-modsecurity-ban on pf221101
Brute-Force
Web App Attack
๐ฉ๐ช
Hazzard
2025-12-05 05:13:49
(7 months ago)
(mod_security) mod_security triggered on hostname [redacted])
SQL Injection
๐บ๐ธ
TPI-Abuse
2025-12-05 04:39:29
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 35.94.163.92 (ec2-35-94-163-92.us-west-2.comput ...
show more
(mod_security) mod_security (id:210492) triggered by 35.94.163.92 (ec2-35-94-163-92.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:39:22.627260 2025] [security2:error] [pid 28320:tid 28320] [client 35.94.163.92:43232] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davedoeswater.com"] [uri "/.git/config"] [unique_id "aTJh-sbFqPUAjluhY1GmFwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
wsyq
2025-12-05 04:02:37
(7 months ago)
Fail2Ban - \[NGINX\]40x-Forcing to access a restricted resource
...
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 03:58:13
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 35.94.163.92 (ec2-35-94-163-92.us-west-2.comput ...
show more
(mod_security) mod_security (id:210492) triggered by 35.94.163.92 (ec2-35-94-163-92.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:58:06.682486 2025] [security2:error] [pid 22940:tid 22940] [client 35.94.163.92:58786] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidfiss.com"] [uri "/.git/config"] [unique_id "aTJYTulTWwQLkaEsId6mYwAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 03:36:44
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 35.94.163.92 (ec2-35-94-163-92.us-west-2.comput ...
show more
(mod_security) mod_security (id:210492) triggered by 35.94.163.92 (ec2-35-94-163-92.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:36:37.772154 2025] [security2:error] [pid 24862:tid 24862] [client 35.94.163.92:36904] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidsonmanagement.net"] [uri "/.git/config"] [unique_id "aTJTRWWMfgOnEF7Hd9YiGgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2025-12-05 02:53:44
(7 months ago)
Excessive 404/403 errors
Brute-Force
๐บ๐ธ
TPI-Abuse
2025-12-05 01:15:23
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 35.94.163.92 (ec2-35-94-163-92.us-west-2.comput ...
show more
(mod_security) mod_security (id:210492) triggered by 35.94.163.92 (ec2-35-94-163-92.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 20:15:20.000923 2025] [security2:error] [pid 21279:tid 21279] [client 35.94.163.92:60104] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davisllp.com"] [uri "/.git/config"] [unique_id "aTIyKG5qVHuGACcvL_2QCgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-12-05 00:58:38
(7 months ago)
Multiple web server 400 error codes from same source ip
Web App Attack
๐จ๐ฟ
Countryman
2024-08-21 21:32:08
(1 year ago)
repeated unauthorized connection attempts, host sweep, port scan
Port Scan
๐ฉ๐ช
ioanm.ro
2024-08-21 19:41:35
(1 year ago)
Threat Blocked by Cloudflare WAF from (ASN:16509) (Network:AMAZON-02) (Host:www.ioanm.ro) (Method:GE ...
show more
Threat Blocked by Cloudflare WAF from (ASN:16509) (Network:AMAZON-02) (Host:www.ioanm.ro) (Method:GET) (Protocol:HTTP/2) (Timestamp:2024-08-21T19:41:35Z)
show less
Open Proxy
VPN IP
Port Scan
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
Anonymous
2024-08-21 06:03:29
(1 year ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host