๐ซ๐ท
pm33
2026-07-05 04:25:17
(2 hours ago)
Probing for resource vulnerabilities HTTP(S)
Web App Attack
๐ซ๐ฎ
oh.mg
2026-07-05 02:26:01
(4 hours ago)
[Sun Jul 05 04:26:00.744894 2026] [security2:error] [pid 2663257:tid 2663268] [client 2a04:4e40:4400 ...
show more
[Sun Jul 05 04:26:00.744894 2026] [security2:error] [pid 2663257:tid 2663268] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9:46504] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "www.oh.mg.sus.fr"] [uri "/.git/HEAD"] [unique_id "aknAuJMjmXugw4ENaaM9igAAAAk"]
[Sun Jul 05 04:26:00.748559 2026] [security2:error] [pid 2673601:tid 2673607] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9:46494] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "9491
...
show less
Web App Attack
Bad Web Bot
๐ณ๐ฑ
homeshowdomain.nl
2026-07-04 21:59:35
(8 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-03.
show less
Web App Attack
SSH
Hacking
๐ณ๐ฑ
ParaBug
2026-07-04 20:54:30
(9 hours ago)
2a04:4e40:4400:0:f15:8be9:f925:35b9 - - [04/Jul/2026:22:54:29 +0200] "GET /.git/HEAD HTTP/1.1" 301 4 ...
show more
2a04:4e40:4400:0:f15:8be9:f925:35b9 - - [04/Jul/2026:22:54:29 +0200] "GET /.git/HEAD HTTP/1.1" 301 4688 "-" "git/2.39.2"
...
show less
Phishing
Brute-Force
Web App Attack
๐ซ๐ท
pm33
2026-07-04 01:59:50
(1 day ago)
Probing for resource vulnerabilities HTTP(S)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 18:36:22
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 14:36:15.868216 2026] [security2:error] [pid 10223:tid 10223] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9:10868] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.brainstormer.soy"] [uri "/.git/HEAD"] [unique_id "akgBH7bP2viZLanHNSoWGQAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 17:22:16
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 13:22:11.193826 2026] [security2:error] [pid 27411:tid 27411] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9:42818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.sabri.es"] [uri "/.git/config"] [unique_id "akfvw8eseoAgtphC83dmMQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 04:59:10
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 00:59:03.683028 2026] [security2:error] [pid 22797:tid 22797] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9:44254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.conservadordehualpen.cl"] [uri "/.git/HEAD"] [unique_id "akdBl0W_aBoKZ9-NcMbkXwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 01:11:12
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 21:11:06.958892 2026] [security2:error] [pid 23664:tid 23664] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9:16858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.noviasaltovacio.com.mx"] [uri "/.git/config"] [unique_id "akcMKpof90haRuSJeut3mAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
boxed-it
2026-07-02 09:35:31
(2 days ago)
GET /.git/HEAD (Tarpitted for 2m10s, wasted 7.73kB)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 04:51:26
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:51:21.252079 2026] [security2:error] [pid 27039:tid 27039] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9:59536] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.campfearnc.com"] [uri "/.git/config"] [unique_id "akXuSZZ1yBTOswAypCtyuwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 03:49:06
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:4400:0:f15:8be9:f925:35b9 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:49:00.793191 2026] [security2:error] [pid 26868:tid 26868] [client 2a04:4e40:4400:0:f15:8be9:f925:35b9:37606] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.carterrose.com"] [uri "/.git/config"] [unique_id "akXfrLqDodIC9wpzsNc_EwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack