๐ฉ๐ช
4server
2026-07-06 01:25:12
(2 hours ago)
[MonJul0603:25:09.4619702026][security2:error][pid3562374:tid3562497][client2a04:4e40:e000:0:a68:8ac ...
show more
[MonJul0603:25:09.4619702026][security2:error][pid3562374:tid3562497][client2a04:4e40:e000:0:a68:8ac2:45aa:4564:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"hercules.li\"][uri\"/.git/HEAD\"][unique_id\"aksD9Y9GnRO1AZSZZ6rJUwAAAQw\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:46:43
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:46:38.330605 2026] [security2:error] [pid 20237:tid 20237] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:62460] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.elimer.com.ve"] [uri "/.git/config"] [unique_id "akreztUhIttOszsCsdTcMQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:10:53
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:10:47.309375 2026] [security2:error] [pid 22352:tid 22352] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:9784] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.thn.bz"] [uri "/.git/HEAD"] [unique_id "akrWZz6F8uIZSRVKsJmZYwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 21:42:42
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 17:42:35.244196 2026] [security2:error] [pid 25865:tid 25895] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:7698] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seracon.com.ec"] [uri "/.git/config"] [unique_id "akrPy2-NO_95ArRL-ZQE4QAAAJY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 09:57:19
(17 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 05:57:13.472719 2026] [security2:error] [pid 9702:tid 9702] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:25604] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dragonfly.garden"] [uri "/.git/HEAD"] [unique_id "akoqeYOHjrF-xNlnzgKB1gAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
nzhost.co.nz
2026-07-05 02:56:52
(1 day ago)
$f2bV_matches
Hacking
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-05 01:43:19
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 21:43:11.196627 2026] [security2:error] [pid 4162:tid 4162] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:56778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "myemail.navy"] [uri "/.git/HEAD"] [unique_id "akm2r1l9wzMTGtAgOn37GAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 05:29:38
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 01:29:31.274888 2026] [security2:error] [pid 4607:tid 4607] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:35350] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brunswickcemeteries.org"] [uri "/.git/HEAD"] [unique_id "akiaOxtQTjGSosMg9VU0ngAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 04:01:07
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 00:01:01.756203 2026] [security2:error] [pid 32008:tid 32008] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:2260] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.floorsanding.org"] [uri "/.git/HEAD"] [unique_id "akiFfZoj8Ryj9VrGPaMqjgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 00:12:58
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 20:12:50.719267 2026] [security2:error] [pid 2891:tid 2891] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:33374] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.centralbaptistalcoa.org"] [uri "/.git/HEAD"] [unique_id "akhQAhVifM-fQh7jeoVsZgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 23:45:54
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 19:45:48.877881 2026] [security2:error] [pid 26228:tid 26228] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:17384] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arts4health.org"] [uri "/.git/HEAD"] [unique_id "akhJrBlGE0PyzdN4478j1QAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-07-03 21:01:11
(2 days ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-03 20:04:35
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 16:04:28.035984 2026] [security2:error] [pid 29132:tid 29132] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:65270] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.anbrusgoldens.com"] [uri "/.git/HEAD"] [unique_id "akgVzHOdjbCwSz7r-HXjjwAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 19:26:59
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 15:26:52.086859 2026] [security2:error] [pid 29932:tid 29932] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:57668] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.jblaw.com"] [uri "/.git/HEAD"] [unique_id "akgM_LG7B68l8xpYJAJUTwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 02:43:03
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:a68:8ac2:45aa:4564 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 22:42:55.488098 2026] [security2:error] [pid 30822:tid 30831] [client 2a04:4e40:e000:0:a68:8ac2:45aa:4564:5624] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.new.flutelesson.nl"] [uri "/.git/HEAD"] [unique_id "akchr4xqQ_OOmUpK2Hrx9wAAAEU"]
show less
Brute-Force
Bad Web Bot
Web App Attack