๐ฎ๐ฉ
Burayot
2025-06-10 00:49:31
(1 year ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.162.194.228 (US/United States/22 ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.162.194.228 (US/United States/228.194.162.34.bc.googleusercontent.com): 1 in the last 3600 secs
show less
Web App Attack
๐ฉ๐ช
paissangroup
2025-06-10 00:49:21
(1 year ago)
Multiple WAF Violations
Web App Attack
๐ซ๐ท
GoodOldTOS
2025-06-09 22:37:17
(1 year ago)
Bad keywords detected in request: /.git
Web App Attack
๐ซ๐ท
dynamix
2025-06-09 22:36:30
(1 year ago)
Multiple WAF Violations
Web App Attack
๐ฒ๐พ
Rizzy
2025-06-09 22:28:40
(1 year ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ซ๐ฎ
as211431.net
2025-06-09 19:51:11
(1 year ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/config
UA: ctโgitโscanner/0.4
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฉ๐ช
Ba-Yu
2025-06-09 16:19:15
(1 year ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-09 16:06:15
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 34.162.194.228 (228.194.162.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.162.194.228 (228.194.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 09 12:06:11.983700 2025] [security2:error] [pid 3758019:tid 3758019] [client 34.162.194.228:51818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "inkcoin.ink"] [uri "/.git/HEAD"] [unique_id "aEcGcwFqdHZwkhpn1YYXFQAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-09 14:22:05
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 34.162.194.228 (228.194.162.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.162.194.228 (228.194.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 09 10:22:01.365060 2025] [security2:error] [pid 1305039:tid 1305039] [client 34.162.194.228:52394] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "luisvende.com"] [uri "/.git/HEAD"] [unique_id "aEbuCX1jL-Lk5zg5xjo2rAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-06-09 14:12:20
(1 year ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /.git/config
Web App Attack
๐ธ๐ช
nekopavel
2025-06-09 13:36:19
(1 year ago)
34.162.194.228 - - [09/Jun/2025:15:36:16 +0200]"GET /.git/HEAD HTTP/1.1" 404 118"-" autoconfig.pavel ...
show more
34.162.194.228 - - [09/Jun/2025:15:36:16 +0200]"GET /.git/HEAD HTTP/1.1" 404 118"-" autoconfig.pavel.gg "ct\xE2\x80\x91git\xE2\x80\x91scanner/0.4""0.001" "0.000""Columbus" "US"
34.162.194.228 - - [09/Jun/2025:15:36:16 +0200]"GET /.git/HEAD HTTP/1.1" 404 118"-" autodiscover.pavel.gg "ct\xE2\x80\x91git\xE2\x80\x91scanner/0.4""0.001" "0.000""Columbus" "US"
34.162.194.228 - - [09/Jun/2025:15:36:16 +0200]"GET /.git/HEAD HTTP/1.1" 404 118"-" mail.pavel.gg "ct\xE2\x80\x91git\xE2\x80\x91scanner/0.4""0.001" "0.000""Columbus" "US"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2025-06-09 07:23:36
(1 year ago)
222 requests with url.path */.git/config
Brute-Force
Bad Web Bot
๐บ๐ธ
AF
2025-06-09 06:05:51
(1 year ago)
Activity: Attempted Git repository access scan, potentially probing for vulnerabilities
Action: Blo ...
show more
Activity: Attempted Git repository access scan, potentially probing for vulnerabilities
Action: Blocked by firewall
Access Log Entries:
โข [09/Jun/2025:06:05:51 +0000] "GET /.git/HEAD HTTP/1.1" 403 118 "-" "ctxE2x80x91gitxE2x80x91scanner/0.4" "-"
โข [09/Jun/2025:06:05:51 +0000] "GET /.git/HEAD HTTP/1.1" 403 118 "-" "ctxE2x80x91gitxE2x80x91scanner/0.4" "-"
โข [09/Jun/2025:06:05:51 +0000] "GET /.git/config HTTP/1.1" 403 118 "-" "ctxE2x80x91gitxE2x80x91scanner/0.4" "-"
โข [09/Jun/2025:06:05:51 +0000] "GET /.git/config HTTP/1.1" 403 118 "-" "ctxE2x80x91gitxE2x80x91scanner/0.4" "-"
show less
Hacking
๐ฎ๐ฉ
penjaga BRIN
2025-06-09 05:16:00
(1 year ago)
nginx-alfa-240
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-09 02:39:28
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 34.162.194.228 (228.194.162.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.162.194.228 (228.194.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 08 22:39:23.552347 2025] [security2:error] [pid 2900451:tid 2900451] [client 34.162.194.228:35196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kerrywood.com"] [uri "/.git/HEAD"] [unique_id "aEZJW0R0lXkOo1qv4-S_CgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack