๐ง๐ช
cmbplf
2026-07-03 11:31:20
(23 minutes ago)
1.174 requests with url.path *.git/*
1.135 requests with url.path */.git/config
Brute-Force
Bad Web Bot
๐ฌ๐ง
consul.to
2026-07-03 11:25:26
(29 minutes ago)
Web attack/malicious scanning detected
Web App Attack
๐ช๐ธ
librebit
2026-07-03 10:35:02
(1 hour ago)
Brute force
Brute-Force
Anonymous
2026-07-03 10:10:01
(1 hour ago)
suspicious request in access.log
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-03 09:09:02
(2 hours ago)
Fail2Ban - [RECIDIVE]Repeat offender across multiple jails on recidive ... [ice01,mx01,mx02,mx03,wa0 ...
show more
Fail2Ban - [RECIDIVE]Repeat offender across multiple jails on recidive ... [ice01,mx01,mx02,mx03,wa01]
show less
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 08:42:11
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:42:05.131673 2026] [security2:error] [pid 7385:tid 7385] [client 170.64.196.202:38084] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eileensharaga.com"] [uri "/.git/config"] [unique_id "akd13cWR8TsUjmQ1ve41lwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 07:58:38
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 03:58:31.481238 2026] [security2:error] [pid 1627:tid 1627] [client 170.64.196.202:53728] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gmanapps.com"] [uri "/.git/config"] [unique_id "akdrp7aS1ythoDx3xEx1CgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
OptimusGO
2026-07-03 07:39:49
(4 hours ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-07-03 08:39:49 UTC
Log evidence:
07/03/2026-08:39:48.372187 [wDrop] [**] [1:7000910:1] FINSERV CRITICAL: Git Repository Access [**] [Classification: Web Application Attack] [Priority: 1] {TCP} 170.64.196.202:54636 -> 185.127.18.66:80
07/03/2026-08:39:48.372187 [**] [1:1000112:1] SECURITY CRITICAL: Git Config File Access Attempt [**] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 170.64.196.202:54636 -> 185.127.18.66:80
show less
Port Scan
Brute-Force
๐ซ๐ท
masterguru
2026-07-03 07:21:31
(4 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 07:18:09
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 03:18:03.712243 2026] [security2:error] [pid 16420:tid 16420] [client 170.64.196.202:45468] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ehrlichfamily.net"] [uri "/.git/config"] [unique_id "akdiK6s_lLbXllAI_RjgEwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-03 07:07:02
(4 hours ago)
Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa02]
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
blinx
2026-07-03 06:12:11
(5 hours ago)
Suspicious activity detected by Modsecurity
Web Spam
Port Scan
Hacking
Bad Web Bot
Web App Attack
๐ง๐ช
voormedia
2026-07-03 05:40:50
(6 hours ago)
Accessed trap at '/.git/config'
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 05:17:59
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:17:56.083330 2026] [security2:error] [pid 24521:tid 24521] [client 170.64.196.202:45066] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "computerizer.org"] [uri "/.git/config"] [unique_id "akdGBIQrI-TTxrrZPghU8wAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 04:57:44
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.196.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 00:57:38.809361 2026] [security2:error] [pid 15861:tid 15861] [client 170.64.196.202:53162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "happybookermusic.com"] [uri "/.git/config"] [unique_id "akdBQtkQKggDu_CAMdeQtgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack