|
๐ฌ๐ง
AvonleaConsulting
|
|
Scanning unused Default website or suspicious access to valid sites from IP marked as abusive
|
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 34.39.234.25 (25.234.39.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.39.234.25 (25.234.39.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:59:03.412068 2026] [security2:error] [pid 20075:tid 20075] [client 34.39.234.25:46532] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mnice.help"] [uri "/portal/.git/config"] [unique_id "ai-it_LOPeMXzfWVhhj_qAAAAAA"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ณ๐ฑ
wlt-blocker
|
|
Unauthorized access to webpage admin
|
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 34.39.234.25 (25.234.39.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.39.234.25 (25.234.39.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:17:34.246251 2026] [security2:error] [pid 6560:tid 6560] [client 34.39.234.25:45114] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.greensealusa.stormstrips.com"] [uri "/v1/.git/config"] [unique_id "ai-Y_oCkWUIC8Lue3QqCPwAAABU"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฉ๐ช
LRob
|
|
Repeated 404 errors, blocked by Fail2ban in custom-404 jail
|
Bad Web Bot
|
|
|
Anonymous
|
|
34.39.234.25 - - [15/Jun/2026:07:56:20 +0200] "GET /www/.git/config HTTP/1.1" 404 11798 "-" "Mozilla ...
show more
34.39.234.25 - - [15/Jun/2026:07:56:20 +0200] "GET /www/.git/config HTTP/1.1" 404 11798 "-" "Mozilla/5.0 (Linux; Android 9; Pixel) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"
...
show less
|
Brute-Force
Web App Attack
|
|
|
๐ซ๐ท
masterguru
|
|
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-195)
|
Hacking
Web App Attack
|
|
|
๐ฌ๐ง
consul.to
|
|
Web attack/malicious scanning detected
|
Web App Attack
|
|
|
๐ซ๐ท
masterguru
|
|
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)
|
Hacking
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 34.39.234.25 (25.234.39.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.39.234.25 (25.234.39.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:25:56.001810 2026] [security2:error] [pid 2387:tid 2387] [client 34.39.234.25:57720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "techspertnet.com"] [uri "/.git/config"] [unique_id "ai9wxNr6ETsRkjvjyTOXBgAAABs"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฉ๐ช
paissangroup
|
|
Multiple WAF Violations
|
Web App Attack
|
|
|
๐ณ๐ฑ
e.fierstra
|
|
ModSecurity hits exceeded
|
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 34.39.234.25 (25.234.39.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.39.234.25 (25.234.39.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 18:20:44.502600 2026] [security2:error] [pid 23252:tid 23252] [client 34.39.234.25:46434] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "baldventure.com.tomthomasplumbing.com"] [uri "/.git/config"] [unique_id "ai8pPBrZedlC5izc7yMuHAAAAAM"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ณ๐ฑ
Eric
|
|
[Sun Jun 14 21:15:44.275556 2026] [security2:error] [pid 2308156:tid 2308156] [client 34.39.234.25:4 ...
show more
[Sun Jun 14 21:15:44.275556 2026] [security2:error] [pid 2308156:tid 2308156] [client 34.39.234.25:44374] [client 34.39.234.25] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 10)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "onderdelen.fambus.nl"] [uri "/.git/config"] [unique_id "ai8aAHTkDV0zc_ugrLtjLQAAABA"]
[Sun Jun 14 21:15:44.279801 2026] [security2:error] [pid 2307924:tid 2307924] [client 34.39.234.25:44388] [client 34.39.234.25] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score
...
show less
|
Hacking
Web App Attack
|
|
|
๐ฉ๐ช
big-cloud.nl
|
|
Try to access /.git/config
|
Web App Attack
|
|