๐ง๐ช
sid3windr
2026-05-29 15:48:52
(1 month ago)
GET /.git/config (Tarpitted for 1d15h8m27s, wasted 8.06MB)
Web App Attack
๐ซ๐ท
service Informatique
2026-05-29 04:00:37
(1 month ago)
/.git
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-05-28 22:02:21
(1 month ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-27.
show less
Web App Attack
SSH
Hacking
๐ฎ๐ฉ
penjaga BRIN
2026-05-28 19:59:12
(1 month ago)
Suspicious malicious activity
Hacking
Anonymous
2026-05-28 19:35:02
(1 month ago)
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-28 19:31:48
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 15:31:40.834824 2026] [security2:error] [pid 6102:tid 6102] [client 8.230.111.19:55826] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.5"] [uri "/.git/config"] [unique_id "ahiYHIxETr7mgsZ5Wza7jQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
ALPHANET
2026-05-28 19:18:51
(1 month ago)
web exploits
Hacking
Exploited Host
Web App Attack
๐ฉ๐ช
gadix
2026-05-28 00:37:00
(1 month ago)
[28/May/2026:02:36:59.506679 +0200] aheOK6vJQOvEyPzDZ9o61AAAAA8 8.230.111.19 44544 127.0.0.1 7081
[2 ...
show more
[28/May/2026:02:36:59.506679 +0200] aheOK6vJQOvEyPzDZ9o61AAAAA8 8.230.111.19 44544 127.0.0.1 7081
[28/May/2026:02:36:59.535183 +0200] aheOK_E3Iaisp3_USyIafAAAAAQ 8.230.111.19 44554 127.0.0.1 7081
[28/May/2026:02:36:59.714607 +0200] aheOKwsATcxCcfXUcFwjzgAAAAA 8.230.111.19 59944 127.0.0.1 7080
...
show less
Web App Attack
๐ซ๐ท
JPPO
2026-05-27 22:50:21
(1 month ago)
Port 443 : GET /.git or /.git/HEAD, /.git/config ... /.DS_store
Web App Attack
Anonymous
2026-05-27 08:05:50
(1 month ago)
WAF repeated trigger detected by Fail2Ban
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-27 06:25:54
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 02:25:50.196002 2026] [security2:error] [pid 21641:tid 21641] [client 8.230.111.19:48876] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.superbat.info"] [uri "/.git/config"] [unique_id "ahaObmfAg9kv6vyrcUeT9AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Blexyel
2026-05-27 04:43:42
(1 month ago)
8.230.111.19 - - [27/May/2026:06:43:41 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 ( ...
show more
8.230.111.19 - - [27/May/2026:06:43:41 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 (X11; U; Linux i686; en-gb) AppleWebKit/534.35 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.35 Puffin/2.0.5603M" "pingusmc.org"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-27 04:12:08
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 00:12:01.984831 2026] [security2:error] [pid 10526:tid 10526] [client 8.230.111.19:53274] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.noramsg.com"] [uri "/.git/config"] [unique_id "ahZvESSLxWiKkPalPpiMUgAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-27 03:25:25
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 23:25:18.859449 2026] [security2:error] [pid 22246:tid 22246] [client 8.230.111.19:47406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.ampstudio.eu"] [uri "/.git/config"] [unique_id "ahZkHvh-_ITnQcP-OUAiFwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-27 03:06:12
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.111.19 (19.111.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 23:06:06.436654 2026] [security2:error] [pid 19003:tid 19003] [client 8.230.111.19:46360] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.atmoorehealthcare.com"] [uri "/.git/config"] [unique_id "ahZfnnAJrUsB1irlhaFVUAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack