๐ฉ๐ช
Vegascosmetics
2026-07-02 05:43:11
(3 minutes ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after attack pattern. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐ฌ๐ง
openstrike.co.uk
2026-07-02 05:14:45
(32 minutes ago)
2 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-02 04:58:21
(48 minutes ago)
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:58:13.885022 2026] [security2:error] [pid 15374:tid 15374] [client 168.144.173.40:45532] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tidarat.com"] [uri "/.git/config"] [unique_id "akXv5a5HdU89hL7T_dZBiAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-02 04:45:01
(1 hour ago)
suspicious request in access.log
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-02 04:41:30
(1 hour ago)
[Thu Jul 02 14:41:28.913862 2026] [security2:error] [pid 469039] [client 168.144.173.40:41296] [clie ...
show more
[Thu Jul 02 14:41:28.913862 2026] [security2:error] [pid 469039] [client 168.144.173.40:41296] [client 168.144.173.40] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "stkildashule.org.au"] [uri "/.git/config"] [unique_id "akXr-GbytYBjk1pBhU8-TQAAABE"]
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 04:34:37
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:34:31.056767 2026] [security2:error] [pid 4289:tid 4310] [client 168.144.173.40:54590] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newyorklifecoach.com"] [uri "/.git/config"] [unique_id "akXqVxYXZd8egqvnM8TnJQAAAFM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 04:10:16
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:10:12.950194 2026] [security2:error] [pid 27065:tid 27065] [client 168.144.173.40:41012] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seshetmusic.com"] [uri "/.git/config"] [unique_id "akXkpPL5tpjAQNuDpSVN1wAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-02 04:09:02
(1 hour ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx01,mx02,m ...
show more
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx01,mx02,mx03,wa01,wa02]
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-07-02 04:01:17
(1 hour ago)
Web vulnerability probing: /.git/config (bogus vhost/SNI)
Web App Attack
๐ง๐ช
voormedia
2026-07-02 03:56:58
(1 hour ago)
Accessed trap at '/.git/config'
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 03:48:54
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:48:49.596497 2026] [security2:error] [pid 25504:tid 25504] [client 168.144.173.40:53622] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thecrossing1.com"] [uri "/.git/config"] [unique_id "akXfobJjod193IKyat1jkgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 03:30:58
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:30:51.931413 2026] [security2:error] [pid 27253:tid 27253] [client 168.144.173.40:46340] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ozarkshousing.com"] [uri "/.git/config"] [unique_id "akXba3BZYhd8h9XfL-TtqQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
TheCoon
2026-07-02 03:15:01
(2 hours ago)
Automated: Credential theft attempt - JSON bomb served
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-02 03:13:37
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:13:32.507903 2026] [security2:error] [pid 16009:tid 16009] [client 168.144.173.40:57226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "register-yacht-cook-islands.com"] [uri "/.git/config"] [unique_id "akXXXOo7AdaX5KOElVbDWgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 02:18:55
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 168.144.173.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 22:18:52.401868 2026] [security2:error] [pid 7726:tid 7726] [client 168.144.173.40:46718] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rookscpa.com"] [uri "/.git/config"] [unique_id "akXKjL2HGlo_vamy-hDydQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack