๐ฌ๐ง
openstrike.co.uk
2026-07-03 05:15:24
(14 hours ago)
2 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-07-02 22:01:45
(21 hours ago)
Auto-ban: >3000 req/min op 2026-07-02
Web App Attack
SSH
Hacking
๐ฆ๐บ
paulshipley.com.au
2026-07-02 13:16:24
(1 day ago)
[Thu Jul 02 23:16:23.997862 2026] [security2:error] [pid 483234] [client 209.38.22.97:60702] [client ...
show more
[Thu Jul 02 23:16:23.997862 2026] [security2:error] [pid 483234] [client 209.38.22.97:60702] [client 209.38.22.97] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "bermanfamily.com.au"] [uri "/.git/config"] [unique_id "akZkp9cj9wyhY3UhtJmDEQAAAAs"]
...
show less
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-02 12:43:52
(1 day ago)
[Thu Jul 02 22:43:51.440485 2026] [security2:error] [pid 477627] [client 209.38.22.97:34336] [client ...
show more
[Thu Jul 02 22:43:51.440485 2026] [security2:error] [pid 477627] [client 209.38.22.97:34336] [client 209.38.22.97] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "bermanfamily.com.au"] [uri "/.git/config"] [unique_id "akZdB6rWwcVKQyTfRQPOjAAAABI"]
...
show less
Web App Attack
๐จ๐ฟ
ddw
2026-07-02 12:15:48
(1 day ago)
ModSecurity detection - Rules: 930130(Restricted File Access Attempt)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 10:36:10
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:36:06.711682 2026] [security2:error] [pid 13371:tid 13371] [client 209.38.22.97:55836] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kildarafarms.com"] [uri "/.git/config"] [unique_id "akY_FuYDRuZbq_JeEwST8AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ช
SkyDancer
2026-07-02 09:50:13
(1 day ago)
Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by Sk ...
show more
Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by SkyDancer Ai. EXT-SYS-Vx
show less
Hacking
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-07-02 09:33:50
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:33:43.963742 2026] [security2:error] [pid 20549:tid 20549] [client 209.38.22.97:38330] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cancersquared.com"] [uri "/.git/config"] [unique_id "akYwd1SJ1qtohc7yGGmedgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 09:12:40
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:12:34.180099 2026] [security2:error] [pid 20527:tid 20527] [client 209.38.22.97:43850] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "advantage-plus.net"] [uri "/.git/config"] [unique_id "akYrgkuKu3WZqTB5aAcZkgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-02 09:02:04
(1 day ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 08:34:03
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 04:33:55.850639 2026] [security2:error] [pid 4626:tid 4626] [client 209.38.22.97:40816] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "churchtop.com"] [uri "/.git/config"] [unique_id "akYic9OgsbxA00KhUC9CJgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 07:16:58
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 03:16:55.444582 2026] [security2:error] [pid 19834:tid 19834] [client 209.38.22.97:55288] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "40svocaltrio.com"] [uri "/.git/config"] [unique_id "akYQZ5vmQbKczCur4zyE6QAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2026-07-02 05:14:46
(1 day ago)
2 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
๐ฉ๐ช
london2038.com
2026-07-02 05:09:25
(1 day ago)
Probing for exploits
209.38.22.97 - - [02/Jul/2026:07:09:21 +0200] "GET /.git/config HTTP/1.1" 422 0 ...
show more
Probing for exploits
209.38.22.97 - - [02/Jul/2026:07:09:21 +0200] "GET /.git/config HTTP/1.1" 422 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
209.38.22.97 - - [02/Jul/2026:07:09:22 +0200] "GET /.git/config HTTP/1.1" 422 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 05:01:29
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.22.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 01:01:21.366307 2026] [security2:error] [pid 26597:tid 26597] [client 209.38.22.97:57122] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fusionrep.com"] [uri "/.git/config"] [unique_id "akXwoalMCDa40t4O_up3zQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack