Anonymous
2026-06-28 23:07:49
(13 hours ago)
Aggressive web scan
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 20:02:57
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 16:02:50.677565 2026] [security2:error] [pid 8757:tid 8757] [client 5.255.109.224:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "levabet.xyz"] [uri "/.git/HEAD"] [unique_id "akF96k0bnynBiRERC60xrwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
its101
2026-06-28 18:30:05
(18 hours ago)
Automated detection by LockdownAccess security system. Attack type(s): git_exposure, env_grab, confi ...
show more
Automated detection by LockdownAccess security system. Attack type(s): git_exposure, env_grab, config_probe. Reason: Nginx: git_exposure attack. Path targeted: unknown. Blocked in Cloudflare.
show less
Web App Attack
Anonymous
2026-06-28 15:55:04
(20 hours ago)
Bot / scanning and/or hacking attempts: GET /config.json HTTP/1.1, GET /js/app.js HTTP/1.1, GET /env ...
show more
Bot / scanning and/or hacking attempts: GET /config.json HTTP/1.1, GET /js/app.js HTTP/1.1, GET /env HTTP/1.1, GET /.git/config HTTP/1.1, GET /login HTTP/1.1, GET /api/.env HTTP/1.1, HEAD / HTTP/1.1, GET / HTTP/1.1, GET /docs HTTP/1.1, GET /js/config.js HTTP/1.1, GET /.env.local HTTP/1.1, GET /backend/.env HTTP/1.1, GET /.env HTTP/1.1, GET /.env.development HTTP/1.1, GET /.aws/credentials HTTP/1.1
show less
Hacking
Web App Attack
๐ซ๐ท
masterguru
2026-06-28 15:04:36
(21 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-201)
Hacking
Web App Attack
๐ฌ๐ง
Aetherweb Ark
2026-06-28 13:02:55
(23 hours ago)
(mod_security) mod_security (id:949110) triggered by 5.255.109.224 (-): N in the last X secs
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-28 12:56:17
(23 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247
Exploited Host
Web App Attack
๐ฎ๐น
VHosting
2026-06-28 12:30:11
(1 day ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 12:24:00
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 08:23:55.190245 2026] [security2:error] [pid 22592:tid 22592] [client 5.255.109.224:60340] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pcga.golf"] [uri "/.git/config"] [unique_id "akESW_TyFkbumooZ5G0-4QAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-28 12:06:33
(1 day ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 10:26:06
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 06:26:02.682561 2026] [security2:error] [pid 2509:tid 2509] [client 5.255.109.224:59792] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "photo-craft.org"] [uri "/.git/HEAD"] [unique_id "akD2usvjxHBW0FMHp1hfvwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
alecj.com
2026-06-28 10:09:35
(1 day ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-28 10:00:51
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 06:00:44.847975 2026] [security2:error] [pid 28710:tid 28710] [client 5.255.109.224:37306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "peterndudar.com"] [uri "/.git/config"] [unique_id "akDwzE8nOoIqaVRKhHEJLwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 09:42:37
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 05:42:29.675259 2026] [security2:error] [pid 799:tid 799] [client 5.255.109.224:42798] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "phtaudio.com"] [uri "/.git/HEAD"] [unique_id "akDshWdRQpUcjDfBHr-THQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 08:01:46
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 5.255.109.224 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 04:01:41.964390 2026] [security2:error] [pid 2355:tid 2355] [client 5.255.109.224:53626] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pericles21.com.terazon.net"] [uri "/.git/HEAD"] [unique_id "akDU5crzUa3xGjpzW6k78gAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack