๐ฌ๐ง
sc user
2026-07-05 20:35:44
(4 days ago)
Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ...
show more
Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy.
show less
Bad Web Bot
Web App Attack
Port Scan
๐ฌ๐ง
sc user
2026-07-01 17:31:14
(1 week ago)
Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ...
show more
Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy.
show less
Bad Web Bot
Web App Attack
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-30 14:34:22
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 212.237.121.120 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 212.237.121.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 10:34:18.571026 2026] [security2:error] [pid 18417:tid 18417] [client 212.237.121.120:17018] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lightupaustralia.com.au"] [uri "/.git/HEAD"] [unique_id "akPT6mq91XMFzL0k6JHRPQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-06-30 14:30:46
(1 week ago)
[Wed Jul 01 00:30:45.722052 2026] [security2:error] [pid 240471] [client 212.237.121.120:16279] [cli ...
show more
[Wed Jul 01 00:30:45.722052 2026] [security2:error] [pid 240471] [client 212.237.121.120:16279] [client 212.237.121.120] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "angleseaarthouse.com.au"] [uri "/.git/HEAD"] [unique_id "akPTFSAlz2C2gTTfMkGqrAAAAA0"], referer: http://angleseaarthouse.com.au/.git/HEAD
...
show less
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-06-30 14:14:45
(1 week ago)
[Wed Jul 01 00:14:45.056299 2026] [security2:error] [pid 252724] [client 212.237.121.120:19317] [cli ...
show more
[Wed Jul 01 00:14:45.056299 2026] [security2:error] [pid 252724] [client 212.237.121.120:19317] [client 212.237.121.120] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "shotbysuzanne.com.au"] [uri "/.git/HEAD"] [unique_id "akPPVe5IusreMJOUm5rtdwAAAAs"], referer: http://shotbysuzanne.com.au/.git/HEAD
...
show less
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-06-30 13:45:34
(1 week ago)
[Tue Jun 30 23:45:33.159571 2026] [security2:error] [pid 246348] [client 212.237.121.120:19815] [cli ...
show more
[Tue Jun 30 23:45:33.159571 2026] [security2:error] [pid 246348] [client 212.237.121.120:19815] [client 212.237.121.120] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "valueaddedpromotions.com.au"] [uri "/.git/HEAD"] [unique_id "akPIfUrFqk9oSjOvwgWakAAAAAM"], referer: http://valueaddedpromotions.com.au/.git/HEAD
...
show less
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-06-30 13:05:58
(1 week ago)
[Tue Jun 30 23:05:56.912299 2026] [security2:error] [pid 252856] [client 212.237.121.120:19313] [cli ...
show more
[Tue Jun 30 23:05:56.912299 2026] [security2:error] [pid 252856] [client 212.237.121.120:19313] [client 212.237.121.120] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "dance4fitness.com.au"] [uri "/.git/HEAD"] [unique_id "akO_NAeF-lk00_ZLdnkoAQAAABU"], referer: http://dance4fitness.com.au/.git/HEAD
...
show less
Web App Attack
๐ฏ๐ต
Valhalla
2026-06-30 11:52:30
(1 week ago)
/app/.env
Hacking
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-06-30 11:51:50
(1 week ago)
[Tue Jun 30 21:51:48.830111 2026] [security2:error] [pid 243309] [client 212.237.121.120:22164] [cli ...
show more
[Tue Jun 30 21:51:48.830111 2026] [security2:error] [pid 243309] [client 212.237.121.120:22164] [client 212.237.121.120] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/.git/HEAD"] [unique_id "akOt1AJ2PWTvayTNREiGDwAAAAA"], referer: http://levellapromotions.com.au/.git/HEAD
...
show less
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-06-30 11:17:51
(1 week ago)
[Tue Jun 30 21:17:50.696657 2026] [security2:error] [pid 242066] [client 212.237.121.120:21088] [cli ...
show more
[Tue Jun 30 21:17:50.696657 2026] [security2:error] [pid 242066] [client 212.237.121.120:21088] [client 212.237.121.120] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ccideas.com.au"] [uri "/.git/HEAD"] [unique_id "akOl3o-hX1-hyNUD_4fdUAAAAAo"], referer: http://ccideas.com.au/.git/HEAD
...
show less
Web App Attack
๐ณ๐ฟ
Antinson
2026-06-30 10:23:30
(1 week ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐ฆ๐บ
nzhost.co.nz
2026-06-30 10:15:55
(1 week ago)
$f2bV_matches
Hacking
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-30 10:00:39
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 212.237.121.120 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 212.237.121.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 06:00:32.274778 2026] [security2:error] [pid 20861:tid 20861] [client 212.237.121.120:24455] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "comsew.com.au"] [uri "/.git/HEAD"] [unique_id "akOTwIWk48R_JfzJkIrrZQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 09:31:01
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 212.237.121.120 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 212.237.121.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 05:30:53.716999 2026] [security2:error] [pid 11082:tid 11082] [client 212.237.121.120:23666] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newlife.org.au"] [uri "/.git/HEAD"] [unique_id "akOMzQuL-7yyzykwKI1-_QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-06-30 09:16:07
(1 week ago)
[Tue Jun 30 19:16:06.505960 2026] [security2:error] [pid 238271] [client 212.237.121.120:20096] [cli ...
show more
[Tue Jun 30 19:16:06.505960 2026] [security2:error] [pid 238271] [client 212.237.121.120:20096] [client 212.237.121.120] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "paulshipley.com.au"] [uri "/.git/HEAD"] [unique_id "akOJVqhHVSU6RgkRnbpKVwAAAAQ"], referer: http://brettkaye.com.au/.git/HEAD
...
show less
Web App Attack