Anonymous
2026-07-06 16:33:48
(2 days ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
π¬π§
openstrike.co.uk
2026-07-04 05:14:55
(5 days ago)
2 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
πͺπΈ
Gem
2026-07-03 22:17:48
(5 days ago)
Unauthorized web scan.
Web App Attack
π³π±
homeshowdomain.nl
2026-07-03 22:00:00
(5 days ago)
Auto-ban: >3000 req/min op 2026-07-03
Web App Attack
SSH
Hacking
π¬π§
Yosi
2026-07-03 17:53:33
(5 days ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
πΊπΈ
TPI-Abuse
2026-07-03 15:54:38
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 11:54:31.549664 2026] [security2:error] [pid 11350:tid 11350] [client 209.38.92.162:56456] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medioskreativos.com"] [uri "/.git/config"] [unique_id "akfbN8NB-zGCVZpVWRQ-ggAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
paulshipley.com.au
2026-07-03 13:43:35
(6 days ago)
[Fri Jul 03 23:43:33.866433 2026] [security2:error] [pid 655482] [client 209.38.92.162:45932] [clien ...
show more
[Fri Jul 03 23:43:33.866433 2026] [security2:error] [pid 655482] [client 209.38.92.162:45932] [client 209.38.92.162] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ccideas.com.au"] [uri "/.git/config"] [unique_id "ake8hYZzAeludehGwQAUCQAAABE"]
...
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 12:24:32
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 08:24:25.717400 2026] [security2:error] [pid 16211:tid 16211] [client 209.38.92.162:48712] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sheargrafix.com"] [uri "/.git/config"] [unique_id "akep-ZfLwUqt726J93aUZgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πͺ
cmbplf
2026-07-03 11:32:08
(6 days ago)
1.099 requests with url.path */.git/config
1.098 requests with url.path *.git/*
Brute-Force
Bad Web Bot
Anonymous
2026-07-03 09:15:01
(6 days ago)
File repository snooping:
209.38.92.162 - - [03/Jul/2026:10:05:27 +0100] "GET /.git/config HTTP/1.1 ...
show more
File repository snooping:
209.38.92.162 - - [03/Jul/2026:10:05:27 +0100] "GET /.git/config HTTP/1.1" 404 248 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
show less
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 08:26:49
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:26:42.587029 2026] [security2:error] [pid 15614:tid 15614] [client 209.38.92.162:45298] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vincentmonaco.com"] [uri "/.git/config"] [unique_id "akdyQrlJLLSatMdwueZZ8wAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
paulshipley.com.au
2026-07-03 07:38:36
(6 days ago)
[Fri Jul 03 17:38:35.319206 2026] [security2:error] [pid 624138] [client 209.38.92.162:45126] [clien ...
show more
[Fri Jul 03 17:38:35.319206 2026] [security2:error] [pid 624138] [client 209.38.92.162:45126] [client 209.38.92.162] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ccideas.com.au"] [uri "/.git/config"] [unique_id "akdm-5JOYkjEZr-uUFYXKQAAAAY"]
...
show less
Web App Attack
π¬π§
Axel
2026-07-03 07:02:02
(6 days ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/config ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/config Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
πΊπΈ
TPI-Abuse
2026-07-03 06:18:31
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 02:18:25.467852 2026] [security2:error] [pid 3791:tid 3791] [client 209.38.92.162:51384] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jasminedreamewagner.com"] [uri "/.git/config"] [unique_id "akdUMenimGn_Goo6_qSiGQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 05:55:37
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.38.92.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:55:29.846472 2026] [security2:error] [pid 12872:tid 12872] [client 209.38.92.162:43728] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nctreillc.com"] [uri "/.git/config"] [unique_id "akdO0WkKbPSafKTzKTyRKgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack