๐ง๐ช
sid3windr
2026-07-05 10:28:20
(12 hours ago)
GET /.git/config (Tarpitted for 4m18s, wasted 15.23kB)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 03:07:47
(19 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 23:07:44.219972 2026] [security2:error] [pid 6622:tid 6622] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:3200] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.messengersforchrist.charity"] [uri "/.git/config"] [unique_id "aknKgD2tO1eJ-Y3YDGtcVwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 22:52:54
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 18:52:50.648440 2026] [security2:error] [pid 18168:tid 18168] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:57326] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garridolandscaping.com"] [uri "/.git/HEAD"] [unique_id "akmOwmkQb_1enMu1H-hSZwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-04 21:59:08
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-03.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-04 07:50:14
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 03:50:06.172952 2026] [security2:error] [pid 5777:tid 5777] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:6466] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.arzoma.com"] [uri "/.git/HEAD"] [unique_id "aki7Ln_yJe35-D3GVNan3wAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 07:03:44
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 03:03:36.441891 2026] [security2:error] [pid 3045:tid 3092] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:32232] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.transiit.atdotorg.org"] [uri "/.git/HEAD"] [unique_id "akiwSG7BE6u5y6tUxJ9YGAAAAZI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 05:50:27
(1 day ago)
(mod_security) mod_security (id:949110) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:949110) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 01:50:19.837234 2026] [security2:error] [pid 11333:tid 11333] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:43578] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.tsmais.cescfoundation.org"] [uri "/.git/config"] [unique_id "akifG_O0L7U2yQD_hJPiggAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 05:13:45
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 01:13:39.781599 2026] [security2:error] [pid 7281:tid 7283] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:61858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rightnews.org"] [uri "/.git/HEAD"] [unique_id "akiWg1F19xDpOiOcIdv7XwAAAcA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 04:58:21
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 00:58:17.473255 2026] [security2:error] [pid 18156:tid 18156] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:34220] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.nwuoregon.org"] [uri "/.git/HEAD"] [unique_id "akiS6TjhEvNYAUCgIvDEkwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 00:28:16
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 20:28:08.726353 2026] [security2:error] [pid 7928:tid 7928] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:60026] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.mcbrearty.org"] [uri "/.git/config"] [unique_id "akhTmFk8-xLAtqwczoaO0wAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 00:07:13
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 20:07:09.129293 2026] [security2:error] [pid 11868:tid 11928] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:49762] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ahsdistance.org"] [uri "/.git/HEAD"] [unique_id "akhOrYeTVGVXls7GOrNIBwAAAMI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 23:38:08
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 19:38:00.789958 2026] [security2:error] [pid 19116:tid 19116] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:12184] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arapi.org"] [uri "/.git/config"] [unique_id "akhH2M1uG1aO_O-BJgwIrQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 20:29:05
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 16:28:59.086211 2026] [security2:error] [pid 29590:tid 29590] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:9692] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.fairwindsfarm.net"] [uri "/.git/config"] [unique_id "akgbi0U6Yawj_cGDUBuPwwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 19:08:53
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 15:08:48.884274 2026] [security2:error] [pid 2767:tid 2767] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:60236] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.comsew.com.au"] [uri "/.git/HEAD"] [unique_id "akgIwN4f0hXH4OXfjjHVMQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 05:00:36
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a04:4e40:e000:0:c4c:c0b4:77ab:156d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:00:29.639271 2026] [security2:error] [pid 11216:tid 11216] [client 2a04:4e40:e000:0:c4c:c0b4:77ab:156d:31820] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.ewebiz.net"] [uri "/.git/HEAD"] [unique_id "akdB7TQNZ0-UtXBYe8m9BQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack