๐ง๐ช
voormedia
2026-07-19 05:46:14
(14 minutes ago)
Accessed trap at '/.git/config'
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 04:48:29
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 19 00:48:24.536372 2026] [security2:error] [pid 8596:tid 8687] [client 157.52.92.79:40890] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lasertagandgames.com"] [uri "/.git/config"] [unique_id "alxXGLaB9vW9nycu1kpTTgAAARg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
mail.avx.gr
2026-07-19 04:22:35
(1 hour ago)
Plesk Fail2Ban jail: Plesk-Web-Exploits. Evidence: default-10-0-0-4:443 157.52.92.79 - - [19/Jul/202 ...
show more
Plesk Fail2Ban jail: Plesk-Web-Exploits. Evidence: default-10-0-0-4:443 157.52.92.79 - - [19/Jul/2026:07:22:34 +0300] "GET /.git/config HTTP/1.1" 403 2426 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 02:43:03
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 22:42:55.001083 2026] [security2:error] [pid 5819:tid 5819] [client 157.52.92.79:52514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bodeur.com"] [uri "/.git/HEAD"] [unique_id "alw5r_ONZyFChwWAtVt5SQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-19 02:20:57
(3 hours ago)
Try to access /.git/HEAD
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 01:46:35
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 21:46:32.071433 2026] [security2:error] [pid 29267:tid 29267] [client 157.52.92.79:49614] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bmillernotary.com"] [uri "/.git/config"] [unique_id "alwseKrZYLUnFSxf2GvGsAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 01:21:07
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 21:21:02.626288 2026] [security2:error] [pid 24479:tid 24479] [client 157.52.92.79:40474] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kirbyimc.com"] [uri "/.git/HEAD"] [unique_id "alwmfqk7azfWj5oGPZ05dAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-19 00:54:28
(5 hours ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 157.52.92.79 (SG/Singapore/-): 2 in t ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 157.52.92.79 (SG/Singapore/-): 2 in the last 3600 secs (0-196)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-19 00:24:04
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 20:24:00.066806 2026] [security2:error] [pid 14053:tid 14053] [client 157.52.92.79:13718] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mywhy.endriss.info"] [uri "/.git/config"] [unique_id "alwZIGCtZs9snQt3pjUo4AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-18 23:44:58
(6 hours ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 157.52.92.79 (SG/Singapore/-): 1 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 157.52.92.79 (SG/Singapore/-): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 23:34:02
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 19:33:58.394118 2026] [security2:error] [pid 1166728:tid 1166728] [client 157.52.92.79:42058] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blanchebb.com"] [uri "/.git/config"] [unique_id "alwNZlDB27OnkcQI4DKQzwAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-18 22:27:44
(7 hours ago)
Brute-Force
Web App Attack
๐ฉ๐ช
macrob
2026-07-18 20:27:02
(9 hours ago)
2026/07/18 20:26:57 [error] 729554#729554: *387688001 access forbidden by rule, client: 157.52.92.79 ...
show more
2026/07/18 20:26:57 [error] 729554#729554: *387688001 access forbidden by rule, client: 157.52.92.79, server: binixo.co, request: "GET /.git/config HTTP/1.1", host: "binixo.co"
2026/07/18 20:26:57 [error] 729552#729552: *387688000 access forbidden by rule, client: 157.52.92.79, server: binixo.co, request: "GET /.git/HEAD HTTP/1.1", host: "binixo.co"
2026/07/18 20:26:57 [error] 729552#729552: *387688013 access forbidden by rule, client: 157.52.92.79, server: binixo.com.ua, request: "GET /.git/config HTTP/1.1", host: "binixo.com.ua"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 20:00:08
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 16:00:02.152424 2026] [security2:error] [pid 27083:tid 27083] [client 157.52.92.79:16450] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "billhumphreyresearch.com"] [uri "/.git/config"] [unique_id "alvbQmbo0APsXDo57VSYAQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 09:38:09
(20 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 05:38:03.265388 2026] [security2:error] [pid 27331:tid 27331] [client 157.52.92.79:26000] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "baptismnapkins.com"] [uri "/.git/config"] [unique_id "altJe8iQg-G-j_-FSu9jvgAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack