๐บ๐ธ
TPI-Abuse
2026-07-18 04:36:34
(17 hours ago)
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 00:36:27.795369 2026] [security2:error] [pid 15967:tid 15967] [client 54.191.75.136:55718] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "heavenonearthonline.net"] [uri "/.git/config"] [unique_id "alsCyw0ugmJsh5u4b4ae_QAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
WeCloudit-Anti-Abuse
2026-07-18 01:22:56
(20 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-07-17 22:00:14
(23 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-16.
show less
Web App Attack
SSH
Hacking
๐ฎ๐น
VHosting
2026-07-17 04:35:03
(1 day ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 03:57:22
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 23:57:15.553797 2026] [security2:error] [pid 309371:tid 309371] [client 54.191.75.136:59114] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michalovic.com"] [uri "/.git/config"] [unique_id "almoGy9FzLNfiLgxjCU9WQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 03:19:51
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 23:19:45.831700 2026] [security2:error] [pid 186100:tid 186100] [client 54.191.75.136:58708] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaeltenore.com"] [uri "/.git/config"] [unique_id "almfUaKa-iy53JsbI3K2FgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 02:45:21
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 22:45:15.883631 2026] [security2:error] [pid 17088:tid 17088] [client 54.191.75.136:56606] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelpmcgrath.com"] [uri "/.git/config"] [unique_id "almXO9kE1HkUYYJWUCfcXgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 01:38:18
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 21:38:12.463022 2026] [security2:error] [pid 6887:tid 6887] [client 54.191.75.136:44600] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelholdengc.com"] [uri "/.git/config"] [unique_id "almHhLDCweZvi9vU8HKGpAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 00:46:19
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 54.191.75.136 (ec2-54-191-75-136.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:46:14.240410 2026] [security2:error] [pid 45924:tid 45924] [client 54.191.75.136:53504] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michael-beasley.com"] [uri "/.git/config"] [unique_id "all7VvhEl0GaW7K71S6LAQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
MM-bot
2026-07-16 12:29:53
(2 days ago)
URL-probe: HTTP/1.1 GET request on /.git/config (2026-07-16 14:29:53 UTC+2)
Web App Attack
Hacking