2026-06-29 07:35:01
(10 hours ago)
suspicious request in access.log
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 10:05:44
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 06:05:40.602670 2026] [security2:error] [pid 5107:tid 5107] [client 143.20.64.236:60926] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "staben.com"] [uri "/.git/config"] [unique_id "akDx9CGRC-q8VXK7hJ8dYgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 08:36:56
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 04:36:52.525796 2026] [security2:error] [pid 24568:tid 24568] [client 143.20.64.236:35446] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sprek.net"] [uri "/.git/HEAD"] [unique_id "akDdJEwBjPdoFKfsdf79uQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
gadix
2026-06-28 08:27:19
(1 day ago)
[28/Jun/2026:10:27:17.254502 +0200] akDa5Zqi0fryW3RjqIbs7wAAAAQ 143.20.64.236 49516 127.0.0.1 7081
[ ...
show more
[28/Jun/2026:10:27:17.254502 +0200] akDa5Zqi0fryW3RjqIbs7wAAAAQ 143.20.64.236 49516 127.0.0.1 7081
[28/Jun/2026:10:27:17.866223 +0200] akDa5YfC5J4wiy9nU0fNswAAAAY 143.20.64.236 49526 127.0.0.1 7081
[28/Jun/2026:10:27:19.074514 +0200] akDa54eULtE5hHtVT7HjKwAAAAg 143.20.64.236 49552 127.0.0.1 7081
...
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 07:48:29
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 03:48:25.985123 2026] [security2:error] [pid 24122:tid 24206] [client 143.20.64.236:54602] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "southtampaprinting.com"] [uri "/.git/HEAD"] [unique_id "akDRyei0Gzfa96hkbbIJrgAAAQk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 07:01:31
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 03:01:24.409416 2026] [security2:error] [pid 11153:tid 11153] [client 143.20.64.236:35358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ssl-grp.com"] [uri "/.git/HEAD"] [unique_id "akDGxBPS4qcy-fJzYYN_CwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 06:34:48
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 02:34:41.467592 2026] [security2:error] [pid 9833:tid 9833] [client 143.20.64.236:46938] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "spacebooger.com.mms-boss.net"] [uri "/.git/config"] [unique_id "akDAgYEfMSdIl48Z-ssaVgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π¦
SoteriaCovenant
2026-06-28 05:00:03
(1 day ago)
Automated probe: /config.json on Soteria Global infrastructure. No vulnerable software present.
Hacking
π§πͺ
cmbplf
2026-06-28 04:31:48
(1 day ago)
161 requests with url.path *.git/*
Brute-Force
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-06-28 01:42:25
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 21:42:20.988494 2026] [security2:error] [pid 12148:tid 12148] [client 143.20.64.236:44750] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "capassoart.com"] [uri "/.git/HEAD"] [unique_id "akB7_GFGt2_h4j7UEUUwJQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-06-28 01:05:07
(1 day ago)
Abuse Detected (2)
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 01:04:09
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 21:04:02.362763 2026] [security2:error] [pid 11130:tid 11130] [client 143.20.64.236:59204] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carltonelyse.com.mykelmilur.com"] [uri "/.git/HEAD"] [unique_id "akBzAkav8EVeEgFHr37YZAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
Apache
2026-06-28 00:31:24
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 5 in the last 300 secs
show less
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-27 23:49:06
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 19:48:59.668872 2026] [security2:error] [pid 9543:tid 9543] [client 143.20.64.236:38336] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cajunpicasso.com"] [uri "/.git/HEAD"] [unique_id "akBha2JsCAJZ6KW2YrhbcQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-27 23:08:57
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 143.20.64.236 (startdeutsh.102.deutsh.eu.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 19:08:52.681691 2026] [security2:error] [pid 2896:tid 2896] [client 143.20.64.236:59720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "captechtraining.com"] [uri "/.git/config"] [unique_id "akBYBKqbs7DRXkbGiQN4sgAAACg"]
show less
Brute-Force
Bad Web Bot
Web App Attack