TPI-Abuse
2024-08-04 20:25:22
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 16:25:12.718880 2024] [security2:error] [pid 12852:tid 12852] [client 36.70.228.124:59273] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jfordclanrecipes.com"] [uri "/.git/"] [unique_id "Zq_jqAtzZE58EjGxNXl6GwAAAAg"] show less
Brute-Force
Bad Web Bot
Web App Attack
girlbossceo
2024-08-04 19:36:56
(2 months ago)
This IP accessed a banned path "/.git/" with User Agent "Mozilla/5.0 (X11; Linux x86_64)". (ListenCa ... show more This IP accessed a banned path "/.git/" with User Agent "Mozilla/5.0 (X11; Linux x86_64)". (ListenCaddy) show less
Bad Web Bot
Web App Attack
Anonymous
2024-08-04 18:31:37
(2 months ago)
[Sun Aug 04 14:31:35.276087 2024] [:error] [pid 13502] [client 36.70.228.124] ModSecurity: Access de ... show more [Sun Aug 04 14:31:35.276087 2024] [:error] [pid 13502] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.[munged]"] [uri "/.git/"] [unique_id "Zq-JB38AAAEAADS@FOIAAAAC"]
[Sun Aug 04 14:31:36.846683 2024] [:error] [pid 14030] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-gene show less
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-04 18:20:55
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 14:20:46.189113 2024] [security2:error] [pid 31040:tid 31040] [client 36.70.228.124:56796] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "landing2.davidquiroa.com"] [uri "/.git/"] [unique_id "Zq_GfrOMQFjYa-nMBniD-gAAABY"] show less
Brute-Force
Bad Web Bot
Web App Attack
quicksand
2024-08-04 18:10:06
(2 months ago)
Malicious URI path [GET /.git/HEAD] [Mozilla/5.0 (X11; Linux x86_64)] **Reported from WAF sampled r ... show more Malicious URI path [GET /.git/HEAD] [Mozilla/5.0 (X11; Linux x86_64)] **Reported from WAF sampled requests** show less
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-04 17:36:41
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 13:36:33.329155 2024] [security2:error] [pid 12848:tid 12848] [client 36.70.228.124:57051] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tarekshohaieb.online"] [uri "/.git/"] [unique_id "Zq-8IXxXGfLy8PmxrSfwSQAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
xyz.rip
2024-08-04 14:44:48
(2 months ago)
WAF Violation...
Hacking
Web App Attack
Anonymous
2024-08-04 13:42:45
(2 months ago)
Port Scan
Web App Attack
mnsf
2024-08-04 13:08:22
(2 months ago)
Too many Status 40X (12)
Brute-Force
Web App Attack
sid3windr
2024-08-04 12:21:56
(2 months ago)
GET /.git/ (Tarpitted for 8s, wasted 600B)
Web App Attack
TPI-Abuse
2024-08-04 11:56:16
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 07:56:08.929304 2024] [security2:error] [pid 18865:tid 18865] [client 36.70.228.124:59253] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barryschiller.com"] [uri "/.git/"] [unique_id "Zq9sWHWS9YWqg06ax2T6cQAAAAY"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-04 11:25:25
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 07:25:18.670833 2024] [security2:error] [pid 19115:tid 19115] [client 36.70.228.124:58645] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.platekinghk.com"] [uri "/.git/"] [unique_id "Zq9lHgi8JelPOfx42BvtCgAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-04 10:55:14
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 06:55:01.531830 2024] [security2:error] [pid 6948:tid 6948] [client 36.70.228.124:62044] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "businessthanksgivingcard.com"] [uri "/.git/"] [unique_id "Zq9eBQi0SpAMsn9BMBVKbQAAABs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-04 09:49:39
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 05:49:32.207265 2024] [security2:error] [pid 18365:tid 18365] [client 36.70.228.124:57610] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goldminingclaimforsale.com"] [uri "/.git/"] [unique_id "Zq9OrIQ_jf8TLUWIc9K3RAAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-04 09:22:33
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 36.70.228.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 05:22:24.872377 2024] [security2:error] [pid 28160:tid 28256] [client 36.70.228.124:56500] [client 36.70.228.124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artmarialeon.com"] [uri "/.git/"] [unique_id "Zq9IUOA_PtPfbeUDnDM8mgAAANM"] show less
Brute-Force
Bad Web Bot
Web App Attack