๐บ๐ธ
TPI-Abuse
2026-06-30 05:55:11
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 01:55:06.523379 2026] [security2:error] [pid 18800:tid 18800] [client 2602:fa59:10:95c::1:59836] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "profile.grimone.com"] [uri "/.git/config"] [unique_id "akNaOjA0nAnFMJYbN98ccgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
oralunal
2026-06-30 05:47:20
(1 week ago)
IP banned by Fail2Ban in jail suss access.log ah-app-1
...
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 05:36:03
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 01:35:58.011762 2026] [security2:error] [pid 12859:tid 12859] [client 2602:fa59:10:95c::1:56024] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pathpa.org"] [uri "/.git/config"] [unique_id "akNVvsFWlcAh3HKF0GY-ywAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Baking333
2026-06-30 05:27:08
(1 week ago)
[redacted] 2602:fa59:10:95c::1 - - [30/Jun/2026:06:27:06 +0100] "GET /.git/config HTTP/1.1" 302 6768 ...
show more
[redacted] 2602:fa59:10:95c::1 - - [30/Jun/2026:06:27:06 +0100] "GET /.git/config HTTP/1.1" 302 6768 0/186200 "-" "Mozilla/5.0 (X11; Linux x86_64)" [redacted] 2602:fa59:10:95c::1 - - [30/Jun/2026:06:27:07 +0100] "GET / HTTP/1.1" 200 8531 0/116153 "https://[redacted]/.git/config" "Mozilla/5.0 (X11; Linux x86_64)"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
Starburst SysOp Team
2026-06-30 05:27:07
(1 week ago)
(mod_security-custom) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the ...
show more
(mod_security-custom) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 3600 secs (0-srv1)
show less
Hacking
๐ต๐ฑ
sefinek.net
2026-06-30 05:23:30
(1 week ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoi ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoint: /.git/config | UA: Mozilla/5.0 (X11; Linux x86_64) โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
Anonymous
2026-06-30 05:18:54
(1 week ago)
<jail> banned by fail2ban
Brute-Force
Web App Attack
๐ต๐ฑ
srebrakowski.com
2026-06-30 05:05:39
(1 week ago)
crowdsec/waf-detected-exploits
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-30 04:56:11
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 00:56:04.301462 2026] [security2:error] [pid 10377:tid 10377] [client 2602:fa59:10:95c::1:58614] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelward.com"] [uri "/.git/config"] [unique_id "akNMZIBHx4C6dvJcDlkl4QAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Blexyel
2026-06-30 04:41:45
(1 week ago)
2602:fa59:10:95c::1 - - [30/Jun/2026:06:41:44 +0200] "GET /.git/config HTTP/1.1" 404 120 "-" "Mozill ...
show more
2602:fa59:10:95c::1 - - [30/Jun/2026:06:41:44 +0200] "GET /.git/config HTTP/1.1" 404 120 "-" "Mozilla/5.0 (X11; Linux x86_64)"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 04:03:40
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2602:fa59:10:95c::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 00:03:34.166128 2026] [security2:error] [pid 25014:tid 25014] [client 2602:fa59:10:95c::1:57938] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jsdavison.com"] [uri "/.git/config"] [unique_id "akNAFtnI-cOrsDk7XW4iyAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
as211431.net
2026-06-30 04:00:51
(1 week ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/config
UA: Mozilla/5.0 (X11; Linux x86_64)
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ณ๐ฑ
myip.foo
2026-06-30 03:54:44
(1 week ago)
[myip.foo] 2602:fa59:10:95c::1 - - [30/Jun/2026:03:54:44 +0000] "GET /.git/config HTTP/1.1" 404 150 ...
show more
[myip.foo] 2602:fa59:10:95c::1 - - [30/Jun/2026:03:54:44 +0000] "GET /.git/config HTTP/1.1" 404 150 "-" "Mozilla/5.0 (X11; Linux x86_64)"
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
IVski
2026-06-30 03:54:31
(1 week ago)
IVski WAF | Sensitive file probe detected - looking for .git
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
interbiznw.com
2026-06-30 03:51:06
(1 week ago)
malicious-web-requests-vulnerability-scanning
Hacking
Brute-Force
Exploited Host
Web App Attack