๐บ๐ธ
TPI-Abuse
2026-07-14 08:50:12
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 04:50:06.933280 2026] [security2:error] [pid 11860:tid 11860] [client 157.52.122.23:30858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.the-schlosser.net"] [uri "/.git/config"] [unique_id "alX4PhNzchPCsS3BmqLJHAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 06:46:50
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 02:46:45.499371 2026] [security2:error] [pid 8557:tid 8557] [client 157.52.122.23:17160] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.zmgmt.net"] [uri "/.git/config"] [unique_id "alXbVX9JuRAy14bPf35VugAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-14 02:19:12
(2 days ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 157.52.122.23 (SE/Sweden/-): 1 in the ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 157.52.122.23 (SE/Sweden/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-14 00:11:12
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 20:11:05.752454 2026] [security2:error] [pid 31081:tid 31081] [client 157.52.122.23:60982] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.williams-rodriguez.org"] [uri "/.git/config"] [unique_id "alV-mf6lQBF-k0N_UJhF0AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฟ๐ฆ
conure
2026-07-13 22:38:20
(2 days ago)
csagent: score 20.0: secrets grab x2; 1 domain(s) in 0s
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 22:21:52
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 18:21:45.977881 2026] [security2:error] [pid 28075:tid 28075] [client 157.52.122.23:26746] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.equipoperu.org"] [uri "/.git/HEAD"] [unique_id "alVk-dc8TSpC4KdZ7_vJ5gAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
pipeline.es
2026-07-13 18:48:34
(2 days ago)
Port scanning / recon | Evidence: date=2026-07-13 time=20:43:33 devname="[redacted]" devid="[redacte ...
show more
Port scanning / recon | Evidence: date=2026-07-13 time=20:43:33 devname="[redacted]" devid="[redacted]" eventtime=1783968213535676610 tz=\"+0200\" logid=\"0000000013\" type=\"traffic\" subtype=\"forward\" level=\"notice\" vd="[redacted]" srcip=157.52.122.23 srcport=3284 srcintf="[redacted]" srcintfrole=\"wan\" dstip=[redacted] dstport=443 dstintf="[redacted]" dstintfrole=\"lan\" srccountry=\"Sweden\" dstcountry=\"Spain\" sessionid | ASN: FASTLY | Country: SE
show less
Port Scan
Web App Attack
๐ซ๐ท
Donovan
2026-07-13 10:35:47
(3 days ago)
Web scan/exploit blocked by fail2ban on commitshift.fr - jail: npm-scan - 1 attempt(s)
Web App Attack
๐ซ๐ท
pm33
2026-07-13 06:12:06
(3 days ago)
Probing for resource vulnerabilities HTTP(S)
Web App Attack
๐ง๐ช
voormedia
2026-07-13 04:39:10
(3 days ago)
Accessed trap at '/.git/config'
Web App Attack
๐ง๐ช
sid3windr
2026-07-13 00:16:59
(3 days ago)
GET /.git/HEAD (Tarpitted for 4m20s, wasted 15.35kB)
Web App Attack
๐ฌ๐ง
Axel
2026-07-13 00:04:03
(3 days ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/HEAD Se ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/HEAD Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-12 09:42:26
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 05:42:20.987342 2026] [security2:error] [pid 22857:tid 22857] [client 157.52.122.23:57538] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.easterbilby.net"] [uri "/.git/config"] [unique_id "alNhfL62emgXl-uWadXe_AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 07:52:18
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 03:52:11.779347 2026] [security2:error] [pid 11602:tid 11602] [client 157.52.122.23:4042] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.amazingthailand.net"] [uri "/.git/HEAD"] [unique_id "alNHq1kZazEZko_o67457gAAACg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 00:55:35
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 20:55:30.890961 2026] [security2:error] [pid 12760:tid 12760] [client 157.52.122.23:3196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.infraredovens.net"] [uri "/.git/logs/HEAD"] [unique_id "alLmAhboYQ3q0H1teMKaeQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack