๐ฉ๐ช
joharikop
2026-07-08 16:32:29
(16 hours ago)
Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-cred ...
show more
Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-credential-probes jail.
show less
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-08 13:32:44
(19 hours ago)
Try to access /.git/HEAD
Web App Attack
๐ฎ๐น
abuseiphack
2026-07-08 08:30:47
(1 day ago)
Automatic report for brute force attack
Bad Web Bot
๐ณ๐ฑ
wlt-blocker
2026-07-08 04:04:30
(1 day ago)
Unauthorized access to webpage admin
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 14:00:17
(1 day ago)
(mod_security) mod_security (id:949110) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:949110) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 09:59:59.695105 2026] [security2:error] [pid 793:tid 793] [client 82.39.206.104:58832] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "weddingb.trophiesetc.us"] [uri "/.git/config"] [unique_id "ak0GX6r5ca4osgnEhA3LuQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-07-07 11:43:11
(1 day ago)
[TueJul0713:43:03.8813782026][security2:error][pid3807512:tid3807750][client82.39.206.104:0]ModSecur ...
show more
[TueJul0713:43:03.8813782026][security2:error][pid3807512:tid3807750][client82.39.206.104:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"viaggi-marocco-lugano.ch.flyingberber.com\"][uri\"/.git/HEAD\"][unique_id\"akzmRybgWtAvI5HjYeELyAAAAIg\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 18:01:56
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 14:01:52.196867 2026] [security2:error] [pid 28531:tid 28531] [client 82.39.206.104:39198] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "389thbg.com"] [uri "/.git/config"] [unique_id "akvtkDZYjfR-rz3OrcIeCwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-05 23:55:15
(3 days ago)
132 requests with url.path *.git/*
Brute-Force
Bad Web Bot
๐ฉ๐ช
webko.si
2026-07-05 18:58:24
(3 days ago)
BARUTANA.si: Bruteforce web app access, URI detail: '/.git/HEAD'.
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-05 12:35:13
(3 days ago)
Try to access /.git/HEAD
Web App Attack
๐ฉ๐ช
IVski
2026-07-05 11:54:43
(3 days ago)
IVski WAF | Sensitive file probe detected - looking for .git
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 17:54:27
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 13:54:19.600663 2026] [security2:error] [pid 22761:tid 22778] [client 82.39.206.104:53850] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alicefaye.com"] [uri "/.git/HEAD"] [unique_id "akalyzvDTF4BWQHs8Rdg-AAAAM8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 16:31:57
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 12:31:53.397825 2026] [security2:error] [pid 27022:tid 27022] [client 82.39.206.104:60620] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "allworld.csennews.com"] [uri "/.git/HEAD"] [unique_id "akaSeZ2rUoFmwivq1vzuyAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 13:37:21
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 09:37:14.095332 2026] [security2:error] [pid 26229:tid 26229] [client 82.39.206.104:48684] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "andysharp.com"] [uri "/.git/HEAD"] [unique_id "akZpikCTF0CMnQTuWVy4oQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 12:40:45
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 82.39.206.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 08:40:37.827578 2026] [security2:error] [pid 19834:tid 19834] [client 82.39.206.104:56580] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "angelaknightmusic.com"] [uri "/.git/HEAD"] [unique_id "akZcReYRQM1HWMq_-Kd48wAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack