๐บ๐ธ
TPI-Abuse
2026-07-07 16:41:26
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 12:41:18.619858 2026] [security2:error] [pid 986:tid 986] [client 157.52.122.49:38664] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.jacinc.net"] [uri "/.git/config"] [unique_id "ak0sLnd1cgeFnn95ipCZlwAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 13:19:27
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 09:19:23.422360 2026] [security2:error] [pid 11362:tid 11362] [client 157.52.122.49:31590] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.mjgraphics.net"] [uri "/.git/config"] [unique_id "akz82yUvmg3opalTeiTJxQAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
securejdprop
2026-07-07 06:16:08
(13 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/vpatch-git-config. WAF block: crowdsecurit ...
show more
This IP was detected by CrowdSec triggering crowdsecurity/vpatch-git-config. WAF block: crowdsecurity/vpatch-git-config from 157.52.122.49 (172.20.0.5)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-07 03:10:59
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 23:10:54.138112 2026] [security2:error] [pid 28745:tid 28745] [client 157.52.122.49:46354] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.carjinn.net"] [uri "/.git/HEAD"] [unique_id "akxuPoxr5cNitSzng7BXHAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 02:48:04
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 22:47:55.966761 2026] [security2:error] [pid 9643:tid 9643] [client 157.52.122.49:13346] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.streetcarz.net"] [uri "/.git/config"] [unique_id "akxo26hEhdb2LFzvxdsZUQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 23:23:35
(20 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 19:23:30.449772 2026] [security2:error] [pid 24973:tid 24973] [client 157.52.122.49:42482] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.icafe.bz.shafie.net"] [uri "/.git/config"] [unique_id "akw48tuaLWp6uRGjgjggqwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 21:49:25
(21 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 17:49:20.386189 2026] [security2:error] [pid 20672:tid 20672] [client 157.52.122.49:55984] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.tomorrowsdust.net"] [uri "/.git/config"] [unique_id "akwi4JUQJF7a1Ru5wm6sIgAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-06 08:51:40
(1 day ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-04 19:20:11
(3 days ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ช
adaml1324
2026-07-04 06:11:36
(3 days ago)
Direct IP probe / invalid SNI
From server logs:
SNI_BAD ip=[attacker] sni="x.gotox.se" time=04/Jul/ ...
show more
Direct IP probe / invalid SNI
From server logs:
SNI_BAD ip=[attacker] sni="x.gotox.se" time=04/Jul/2026:00:28:00 +0200
SNI_BAD ip=[attacker] sni="x.gotox.se" time=04/Jul/2026:00:28:00 +0200
SNI_BAD ip=[attacker] sni="www.x.gotox.se" time=04/Jul/2026:00:28:00 +0200
SNI_BAD ip=[attacker] sni="www.x.gotox.se" time=04/Jul/2026:00:28:00 +0200
show less
Bad Web Bot
Anonymous
2026-07-04 06:06:48
(3 days ago)
Trying to access config files
Web App Attack
๐ซ๐ท
masterguru
2026-07-03 17:43:28
(4 days ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-197)
Hacking
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-03 06:51:26
(4 days ago)
Try to access /.git/HEAD
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 05:10:04
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.122.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:09:57.631673 2026] [security2:error] [pid 1179:tid 1179] [client 157.52.122.49:48144] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.notariaramirez.cl"] [uri "/.git/config"] [unique_id "akdEJUIz46UnQ65T1ZQHGAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-03 04:06:07
(4 days ago)
Trying to access config files
Web App Attack