๐บ๐ธ
TPI-Abuse
2026-07-17 07:14:00
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 18.246.209.192 (ec2-18-246-209-192.us-west-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.246.209.192 (ec2-18-246-209-192.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 03:13:53.370799 2026] [security2:error] [pid 385367:tid 385417] [client 18.246.209.192:53258] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.freeziyadyaghi.newtrendmag.org"] [uri "/.git/config"] [unique_id "alnWMb-5xCmjpvGqP-VIlAAAARA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐พ
lns.bz
2026-07-17 06:06:10
(13 hours ago)
Too many 404 requests [BY]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 01:34:37
(17 hours ago)
(mod_security) mod_security (id:210492) triggered by 18.246.209.192 (ec2-18-246-209-192.us-west-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.246.209.192 (ec2-18-246-209-192.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 21:34:30.775790 2026] [security2:error] [pid 947:tid 947] [client 18.246.209.192:36846] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fredlandia.benshermanguitar.com"] [uri "/.git/config"] [unique_id "almGpmAU2WHO_yFd9AOGjwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 01:13:08
(18 hours ago)
(mod_security) mod_security (id:210492) triggered by 18.246.209.192 (ec2-18-246-209-192.us-west-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.246.209.192 (ec2-18-246-209-192.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 21:13:00.920184 2026] [security2:error] [pid 17329:tid 17329] [client 18.246.209.192:50910] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.frederickcannon.coolingsprings.org"] [uri "/.git/config"] [unique_id "almBnHK24uWYcQVnDwZxiAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Mangelot Hosting
2026-07-16 18:28:10
(1 day ago)
(modsecurity) srv102 ModSecurity 18.246.209.192 (US/United States/ec2-18-246-209-192.us-west-2.compu ...
show more
(modsecurity) srv102 ModSecurity 18.246.209.192 (US/United States/ec2-18-246-209-192.us-west-2.compute.amazonaws.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐ฎ๐น
VHosting
2026-07-16 18:00:05
(1 day ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ณ๐ฑ
WeCloudit-Anti-Abuse
2026-07-16 17:00:18
(1 day ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐ซ๐ท
masterguru
2026-07-16 14:04:07
(1 day ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 12:48:11
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 18.246.209.192 (ec2-18-246-209-192.us-west-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 18.246.209.192 (ec2-18-246-209-192.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 08:48:06.295375 2026] [security2:error] [pid 26622:tid 26622] [client 18.246.209.192:53520] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.masalamadrid.com"] [uri "/.git/config"] [unique_id "aljTBjjOamktE2H_fcwtcAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack