πΊπΈ
TPI-Abuse
2026-07-02 05:42:55
(4 minutes ago)
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 01:42:52.040398 2026] [security2:error] [pid 26228:tid 26228] [client 209.38.90.179:60356] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "convtek.com"] [uri "/.git/config"] [unique_id "akX6XLNgpMYnwHvGJ9F6ywAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
openstrike.co.uk
2026-07-02 05:14:31
(32 minutes ago)
7 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
π¨π
4server
2026-07-02 04:59:39
(47 minutes ago)
[ThuJul0206:59:35.5996442026][security2:error][pid3416433:tid3416602][client209.38.90.179:0]ModSecur ...
show more
[ThuJul0206:59:35.5996442026][security2:error][pid3416433:tid3416602][client209.38.90.179:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"asyam.ch\"][uri\"/.git/config\"][unique_id\"akXwN6HwDR9eRngZiyq2lgAAAQ0\"]
show less
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 04:46:05
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:46:00.612639 2026] [security2:error] [pid 5718:tid 5718] [client 209.38.90.179:45680] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "joshuashands.org"] [uri "/.git/config"] [unique_id "akXtCJGy0BDn3AZFL2b0TwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
hyena
2026-07-02 04:46:03
(1 hour ago)
Repeated mod_security events.
Web App Attack
π«π·
masterguru
2026-07-02 04:22:27
(1 hour ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 04:20:42
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:20:36.913994 2026] [security2:error] [pid 13462:tid 13462] [client 209.38.90.179:45744] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crr-construction.com"] [uri "/.git/config"] [unique_id "akXnFLV3Z18c_R7hjDa8lgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
4server
2026-07-02 03:57:12
(1 hour ago)
[ThuJul0205:57:06.5265312026][security2:error][pid2396032:tid2396083][client209.38.90.179:0]ModSecur ...
show more
[ThuJul0205:57:06.5265312026][security2:error][pid2396032:tid2396083][client209.38.90.179:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"aexthesya.ch\"][uri\"/.git/config\"][unique_id\"akXhktkNdRgp3rCuqjEWuAAAAE0\"]
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
2026-07-02 03:34:22
(2 hours ago)
Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy ...
show more
Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy β zero tolerance for exploit scanning. Banned Jul 2, 03:34 UTC. Origin: Australia, Sydney.
show less
Hacking
Bad Web Bot
Web App Attack
π©πͺ
Ba-Yu
2026-07-02 03:15:30
(2 hours ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 03:13:37
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:13:32.951009 2026] [security2:error] [pid 26823:tid 26823] [client 209.38.90.179:38530] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "camairhvac.com"] [uri "/.git/config"] [unique_id "akXXXOlk9nlAmtgM4zJqRgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
on-com
2026-07-02 02:40:07
(3 hours ago)
URL scan
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 02:40:06
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 22:39:57.640236 2026] [security2:error] [pid 746:tid 746] [client 209.38.90.179:32870] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dudleyanddudley.com"] [uri "/.git/config"] [unique_id "akXPfe7eI6iH6CzgXxu0CgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 02:23:33
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 22:23:25.299157 2026] [security2:error] [pid 6359:tid 6359] [client 209.38.90.179:54968] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dunningtons.com"] [uri "/.git/config"] [unique_id "akXLnfEuYwM2z6QRcA36YQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 01:59:45
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.90.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 21:59:40.402234 2026] [security2:error] [pid 25148:tid 25148] [client 209.38.90.179:43240] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "iplantotravel.com"] [uri "/.git/config"] [unique_id "akXGDO4xnJVIOSXHWQfKVQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack