TPI-Abuse
2024-09-07 17:11:33
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 i ... show more (mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 07 13:11:25.703256 2024] [security2:error] [pid 5084:tid 5084] [client 93.100.203.39:53438] [client 93.100.203.39] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "christineohlman.net"] [uri "/.git/HEAD"] [unique_id "ZtyJPXjVAcheOY7MDigbaAAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-07 16:55:21
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 i ... show more (mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 07 12:55:14.550369 2024] [security2:error] [pid 28490:tid 28490] [client 93.100.203.39:51609] [client 93.100.203.39] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "renju.net"] [uri "/.git/HEAD"] [unique_id "ZtyFcrfgthpc_iowYJPL-wAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-07 16:36:40
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 i ... show more (mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 07 12:36:36.539011 2024] [security2:error] [pid 25238:tid 25238] [client 93.100.203.39:50560] [client 93.100.203.39] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "xcengineering.xyz"] [uri "/.git/HEAD"] [unique_id "ZtyBFAJCGty1b-D4Miz5qAAAAAI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-09-07 16:27:14
(2 days ago)
Infostealer, stealing credentials: /.git/HEAD
Hacking
Information Security
2024-09-07 16:12:58
(2 days ago)
Web App Attack
Web App Attack
TPI-Abuse
2024-09-07 16:12:56
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 i ... show more (mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 07 12:12:49.073029 2024] [security2:error] [pid 22623:tid 22623] [client 93.100.203.39:55208] [client 93.100.203.39] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alexgitlin.com"] [uri "/.git/HEAD"] [unique_id "Ztx7gUdqJS_wkCAu6r40UwAAAAQ"] show less
Brute-Force
Bad Web Bot
Web App Attack
CommanderRoot
2024-08-07 21:55:48
(1 month ago)
HTTP requesting invalid domains
DDoS Attack
Web Spam
rdpguard.com
2024-08-02 20:45:52
(1 month ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
Anonymous
2024-08-02 20:44:16
(1 month ago)
Web App Attack
Anonymous
2024-08-02 20:35:03
(1 month ago)
Automatic report - Vulnerability scan
/.git/HEAD
Web App Attack
TPI-Abuse
2024-08-02 20:30:01
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 i ... show more (mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 02 16:29:55.843226 2024] [security2:error] [pid 7567:tid 7567] [client 93.100.203.39:61371] [client 93.100.203.39] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "donutlocations.com"] [uri "/.git/HEAD"] [unique_id "Zq1Bw-S125nr6vPF1fo30wAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-08-02 20:12:22
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 i ... show more (mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 02 16:12:16.285201 2024] [security2:error] [pid 715882:tid 715893] [client 93.100.203.39:52041] [client 93.100.203.39] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dinersdriveinsdiveslocations.com"] [uri "/.git/HEAD"] [unique_id "Zq09oMvWjuwyaEVn9KWv5AAAAAg"] show less
Brute-Force
Bad Web Bot
Web App Attack
el-brujo
2024-08-02 19:53:31
(1 month ago)
Cloudflare WAF: Request Path: /.git/HEAD Request Query: Host: elhacker.net userAgent: Python-urllib ... show more Cloudflare WAF: Request Path: /.git/HEAD Request Query: Host: elhacker.net userAgent: Python-urllib/3.11 Action: block Source: firewallManaged ASN Description: AS-SKYNET-SPB Country: RU Method: GET Timestamp: 2024-08-02T19:53:31Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Hacking
SQL Injection
Web App Attack
billyw0nka
2024-08-02 19:50:17
(1 month ago)
pattern: .git
Hacking
TPI-Abuse
2024-08-02 19:40:27
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 i ... show more (mod_security) mod_security (id:210492) triggered by 93.100.203.39 (93.100.203.39.pool.sknt.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 02 15:40:19.916801 2024] [security2:error] [pid 17412:tid 17412] [client 93.100.203.39:53772] [client 93.100.203.39] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "guardmagic.com"] [uri "/.git/HEAD"] [unique_id "Zq02IxPfO4e1cuphyMccyAAAAA8"] show less
Brute-Force
Bad Web Bot
Web App Attack