πΊπΈ
TPI-Abuse
2026-07-16 12:13:17
(56 minutes ago)
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 08:13:13.390710 2026] [security2:error] [pid 7049:tid 7049] [client 184.32.248.27:35134] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starsnurses.com"] [uri "/.git/config"] [unique_id "aljK2WxzMXFq7cVt5BqDVwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 11:20:14
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 07:20:05.745766 2026] [security2:error] [pid 3129:tid 3129] [client 184.32.248.27:44156] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starrmail.net"] [uri "/.git/config"] [unique_id "ali-Zb7ZS52iQxQAWxVROAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 07:21:43
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 03:21:37.965468 2026] [security2:error] [pid 16013:tid 16013] [client 184.32.248.27:41388] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starfi.com"] [uri "/.git/config"] [unique_id "aliGgfAnRdpaDktOameFGgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 06:23:12
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 02:23:07.417374 2026] [security2:error] [pid 10847:tid 10847] [client 184.32.248.27:58182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starcrestsales.com"] [uri "/.git/config"] [unique_id "alh4y92XkaOk4tO1E9SW0gAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 03:45:16
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 184.32.248.27 (ec2-184-32-248-27.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 23:45:08.369990 2026] [security2:error] [pid 22778:tid 22778] [client 184.32.248.27:43970] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stansco.com"] [uri "/.git/config"] [unique_id "alhTxKTjC1KKeEKkB_wu7gAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Prodscape
2026-07-16 01:03:45
(12 hours ago)
*Port Scan* detected from 184.32.248.27 (US/United States/ec2-184-32-248-27.us-west-2.compute.amazon ...
show more
*Port Scan* detected from 184.32.248.27 (US/United States/ec2-184-32-248-27.us-west-2.compute.amazonaws.com). 10 hits in the last 220 seconds; Ports: *; Direction: in; Trigger: PS_LIMIT
show less
Port Scan
π©πͺ
FeG Deutschland
2026-07-15 22:09:14
(15 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247
Exploited Host
Web App Attack
π³πΏ
Antinson
2026-07-15 17:37:42
(19 hours ago)
Scraping with a high error ratio and request rate
Bad Web Bot
π³π±
WeCloudit-Anti-Abuse
2026-07-15 14:11:39
(22 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking