Anonymous
2026-07-01 06:56:03
(2 minutes ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 06:26:47
(32 minutes ago)
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 02:26:44.264316 2026] [security2:error] [pid 18145:tid 18271] [client 198.199.78.91:58140] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teanaunz.com"] [uri "/.git/config"] [unique_id "akSzJOsEMcR0jBFXMp5XKQAAAos"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 06:02:28
(56 minutes ago)
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 02:02:19.182007 2026] [security2:error] [pid 9020:tid 9020] [client 198.199.78.91:47346] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tipdavid.com"] [uri "/.git/config"] [unique_id "akSta4n2UQqxlZl0tdh6gQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-01 05:50:52
(1 hour ago)
[Wed Jul 01 15:50:51.802395 2026] [security2:error] [pid 333859] [client 198.199.78.91:34380] [clien ...
show more
[Wed Jul 01 15:50:51.802395 2026] [security2:error] [pid 333859] [client 198.199.78.91:34380] [client 198.199.78.91] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "shotbysuzanne.com.au"] [uri "/.git/config"] [unique_id "akSqu0vEgbvLTWhckrPzbAAAABA"]
...
show less
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2026-07-01 05:15:19
(1 hour ago)
5 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
๐ง๐ช
voormedia
2026-07-01 04:55:46
(2 hours ago)
Accessed trap at '/.git/config'
Web App Attack
๐ฉ๐ช
4server
2026-07-01 04:23:22
(2 hours ago)
[WedJul0106:23:17.0195282026][security2:error][pid1062087:tid1062207][client198.199.78.91:0]ModSecur ...
show more
[WedJul0106:23:17.0195282026][security2:error][pid1062087:tid1062207][client198.199.78.91:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"wildpferde.ch\"][uri\"/.git/config\"][unique_id\"akSWNTcQgEtOq80lcpxhVgAAANY\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 04:19:21
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 00:19:16.588846 2026] [security2:error] [pid 19181:tid 19181] [client 198.199.78.91:39564] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wyndover.photo"] [uri "/.git/config"] [unique_id "akSVRNiOd5i99n1bVYSnaAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 02:41:50
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 22:41:45.409950 2026] [security2:error] [pid 31654:tid 31654] [client 198.199.78.91:42470] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twccsolutions.com"] [uri "/.git/config"] [unique_id "akR-acdN_OQHwpjpppPBaAAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-01 02:31:15
(4 hours ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 02:26:21
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 22:26:16.695212 2026] [security2:error] [pid 14108:tid 14108] [client 198.199.78.91:34990] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "unionega.com"] [uri "/.git/config"] [unique_id "akR6yI_L902lvPmYQvvX7AAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
YF
2026-07-01 02:15:22
(4 hours ago)
Git config exposure probe
Web App Attack
๐ฎ๐น
Inartis
2026-07-01 02:06:08
(4 hours ago)
198.199.78.91 - - [01/Jul/2026:04:06:07 +0200] "GET /.git/config HTTP/1.1" 302 457 "-" "Mozilla/5.0 ...
show more
198.199.78.91 - - [01/Jul/2026:04:06:07 +0200] "GET /.git/config HTTP/1.1" 302 457 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 02:01:00
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 198.199.78.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 22:00:56.520607 2026] [security2:error] [pid 5740:tid 5740] [client 198.199.78.91:45614] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tankercontrol.com"] [uri "/.git/config"] [unique_id "akR02FUgz-p87XbxoctUHgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ช
SkyDancer
2026-07-01 01:53:25
(5 hours ago)
Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by Sk ...
show more
Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by SkyDancer Ai. EXT-SYS-Vx
show less
Hacking
Brute-Force
SSH