๐ซ๐ท
masterguru
2026-07-19 13:32:23
(8 hours ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 157.52.92.27 (SG/Singapore/-): 2 in t ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 157.52.92.27 (SG/Singapore/-): 2 in the last 3600 secs (0-196)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-19 11:39:38
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 19 07:39:31.601788 2026] [security2:error] [pid 12257:tid 12257] [client 157.52.92.27:17074] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.ruthbalser.org"] [uri "/.git/HEAD"] [unique_id "aly3cwnzxmrdBw4t2q1YGQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 10:44:18
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 19 06:44:13.549793 2026] [security2:error] [pid 12815:tid 12815] [client 157.52.92.27:59196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bearssd.org"] [uri "/.git/config"] [unique_id "alyqfUdQeF9F7gBMAfwGUQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 08:08:03
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 19 04:07:57.718219 2026] [security2:error] [pid 18631:tid 18631] [client 157.52.92.27:6632] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.jimgrenier.com"] [uri "/.git/HEAD"] [unique_id "alyF3Zg8GqAI4LVaxCQWoAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-07-19 05:31:15
(16 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-19 04:38:07
(17 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 19 00:38:00.704137 2026] [security2:error] [pid 21708:tid 21708] [client 157.52.92.27:14218] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.entertainmentcapitol.com"] [uri "/.git/HEAD"] [unique_id "alxUqFLGxCnVy1SYGF3vcQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 03:50:45
(18 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 23:50:40.028768 2026] [security2:error] [pid 25223:tid 25223] [client 157.52.92.27:44406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "largeprintdailyjournal.banis-associates.com"] [uri "/.git/config"] [unique_id "alxJkJOVH59y5uQqNIaKdgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 03:21:52
(18 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 23:21:48.751712 2026] [security2:error] [pid 25155:tid 25155] [client 157.52.92.27:16356] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.michaelcarrollgreen.com"] [uri "/.git/config"] [unique_id "alxCzE-iOx3LPsHOJz4eLQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 02:26:28
(19 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 22:26:21.429455 2026] [security2:error] [pid 1227293:tid 1227293] [client 157.52.92.27:59952] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.jewishventura.org"] [uri "/.git/HEAD"] [unique_id "alw1zUaVBDQE78gs974mMAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
mail.avx.gr
2026-07-19 01:11:56
(20 hours ago)
Plesk Fail2Ban jail: Plesk-Web-Exploits. Evidence: default-10-0-0-4:443 157.52.92.27 - - [19/Jul/202 ...
show more
Plesk Fail2Ban jail: Plesk-Web-Exploits. Evidence: default-10-0-0-4:443 157.52.92.27 - - [19/Jul/2026:04:11:55 +0300] "GET /.git/config HTTP/1.1" 403 2432 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 00:55:48
(20 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 20:55:41.529317 2026] [security2:error] [pid 29998:tid 29998] [client 157.52.92.27:53194] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blublk.com"] [uri "/.git/config"] [unique_id "alwgjTzbdo9lwr-PoAlwNwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-19 00:28:27
(21 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 20:28:20.599382 2026] [security2:error] [pid 3656507:tid 3656657] [client 157.52.92.27:40480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nabsci.com"] [uri "/.git/HEAD"] [unique_id "alwaJLgkbFvIKMtUkUoQEQAAARI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 23:53:34
(21 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 19:53:30.664106 2026] [security2:error] [pid 2859068:tid 2859068] [client 157.52.92.27:47816] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.willowgrovemusic.com"] [uri "/.git/HEAD"] [unique_id "alwR-vO8m_9lq-cPU6Y-DwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-18 23:44:54
(22 hours ago)
Try to access /.git/HEAD
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 23:35:26
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 157.52.92.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 19:35:21.695682 2026] [security2:error] [pid 15779:tid 15779] [client 157.52.92.27:63090] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.dannyvanrijswijk.com"] [uri "/.git/config"] [unique_id "alwNuT1l8SRLNeLhieEcUgAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack