๐ฒ๐ฉ
t123troy
2026-05-30 03:18:28
(4 weeks ago)
FRIDAY Sovereign Security: SSH brute force + AI-powered attack agent detected. UNKNOWN:mozilla/5.0 ( ...
show more
FRIDAY Sovereign Security: SSH brute force + AI-powered attack agent detected. UNKNOWN:mozilla/5.0 (iphone; cpu iphone os 12_1 like mac o. Session: unknown
show less
Brute-Force
SSH
Port Scan
๐ซ๐ท
dynamix
2026-05-30 01:27:10
(4 weeks ago)
Multiple WAF Violations
Web App Attack
๐ณ๐ฑ
Savvii
2026-05-28 23:16:45
(1 month ago)
20 attempts against mh_ha-misbehave-ban on star
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
Mediashaker
2026-05-28 22:48:57
(1 month ago)
(CT) IP 8.230.118.248 (US/United States/248.118.230.8.bc.googleusercontent.com) found to have 721 co ...
show more
(CT) IP 8.230.118.248 (US/United States/248.118.230.8.bc.googleusercontent.com) found to have 721 connections
show less
DDoS Attack
๐ง๐พ
lns.bz
2026-05-28 22:02:52
(1 month ago)
Too many 404 requests [BY]
Web App Attack
Anonymous
2026-05-15 10:50:04
(1 month ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐จ๐ฆ
polycoda
2026-05-15 09:52:15
(1 month ago)
AutoBlock: โ๏ธ Configuration File Access (Non Decay-Based)
Hacking
Web App Attack
๐บ๐ธ
Starburst SysOp Team
2026-05-15 07:45:10
(1 month ago)
(mod_security-custom) mod_security (id:210492) triggered by 8.230.118.248 (US/United States/Texas/Da ...
show more
(mod_security-custom) mod_security (id:210492) triggered by 8.230.118.248 (US/United States/Texas/Dallas/248.118.230.8.bc.googleusercontent.com/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 3600 secs (0-srv1)
show less
Hacking
๐ณ๐ฟ
Antinson
2026-05-15 06:48:26
(1 month ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-05-15 06:47:05
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.118.248 (248.118.230.8.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.118.248 (248.118.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 02:46:57.729340 2026] [security2:error] [pid 21149:tid 21149] [client 8.230.118.248:33090] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "juhoanttila.com"] [uri "/.git/config"] [unique_id "agbBYeV8yI6CU0Jbma8KpQAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-15 04:48:21
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.118.248 (248.118.230.8.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.118.248 (248.118.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 00:48:13.402672 2026] [security2:error] [pid 3522:tid 3553] [client 8.230.118.248:43452] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.colinkyffinmusic.com"] [uri "/.git/config"] [unique_id "agaljd-7h3KOSCBxLRF49gAAANE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-15 04:11:57
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.118.248 (248.118.230.8.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.118.248 (248.118.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 00:11:50.852825 2026] [security2:error] [pid 28681:tid 28681] [client 8.230.118.248:49150] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "1st-advantage-arkansas-real-estate-school.com"] [uri "/.git/config"] [unique_id "agadBv0VrMif_aenRkya4AAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-05-15 03:40:33
(1 month ago)
[FriMay1505:40:30.2593832026][security2:error][pid3293478:tid3293599][client8.230.118.248:0]ModSecur ...
show more
[FriMay1505:40:30.2593832026][security2:error][pid3293478:tid3293599][client8.230.118.248:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.ruberticonsulting.ch.81-17-25-250.cpanel.site\"][uri\"/.git/config\"][unique_id\"agaVruqWl5qy8STiWEErLAAAANc\"]
show less
Hacking
Web App Attack
๐ง๐ช
cmbplf
2026-05-15 02:47:45
(1 month ago)
542 requests with url.path */.git/config
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-05-15 02:29:41
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 8.230.118.248 (248.118.230.8.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 8.230.118.248 (248.118.230.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 22:29:35.493827 2026] [security2:error] [pid 30988:tid 30988] [client 8.230.118.248:40964] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cchockeyhistory.org"] [uri "/.git/config"] [unique_id "agaFDzGk3O-4p-Bt7cIHUwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack