๐บ๐ธ
Matthew Ping
2026-06-30 02:15:02
(5 hours ago)
ModSecurity rule 949110 triggered on cumberland. Web application attack blocked by CSF/LFD.
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-29 21:47:42
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 17:47:37.906389 2026] [security2:error] [pid 16402:tid 16402] [client 91.192.10.179:59660] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "delicioushotspots.vittariadesign.com"] [uri "/.git/HEAD"] [unique_id "akLn-WdlnnLbOKx5GqKnAQAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 21:29:35
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 17:29:29.620898 2026] [security2:error] [pid 18372:tid 18372] [client 91.192.10.179:40254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crafft.cloudex.link"] [uri "/.git/HEAD"] [unique_id "akLjuVmljR2wfWPxzEfaWQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Aetherweb Ark
2026-06-29 21:13:48
(10 hours ago)
(mod_security) mod_security (id:949110) triggered by 91.192.10.179 (DE/Germany/-): N in the last X s ...
show more
(mod_security) mod_security (id:949110) triggered by 91.192.10.179 (DE/Germany/-): N in the last X secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 21:13:43
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 17:13:35.387737 2026] [security2:error] [pid 16661:tid 16661] [client 91.192.10.179:55138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "covid19.mavikalem.org"] [uri "/.git/HEAD"] [unique_id "akLf_5Gj0KgXJuK9S-lxMgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ท
dominioz
2026-06-29 20:58:32
(10 hours ago)
2026-06-29 20:58:00 GET /.env - - 91.192.10.179 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+15_7 ...
show more
2026-06-29 20:58:00 GET /.env - - 91.192.10.179 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+15_7_5)+AppleWebKit/605.1.15+(KHTML,+like+Gecko)+Version/26.0+Safari/605.1.15 - 301 564
2026-06-29 20:58:02 GET /.git/config - - 91.192.10.179 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+15.7;+rv:149.0)+Gecko/20100101+Firefox/149.0 - 301 578
2026-06-29 20:58:03 GET /backend/.env - - 91.192.10.179 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+15.7;+rv:149.0)+Gecko/20100101+Firefox/149.0 - 301 580
2026-06-29 20:58:03 GET /api/.env - - 91.192.10.179 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_15_7)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/147.0.0.0+Safari/537.36 - 301 572
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 20:52:23
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 16:52:16.512587 2026] [security2:error] [pid 32227:tid 32227] [client 91.192.10.179:47152] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dodosdiscuss.flyingdodostudio.com"] [uri "/.git/config"] [unique_id "akLbAGVkrtLzsLNpy1VhxQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-29 19:15:38
(12 hours ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-29 19:15:12
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 15:15:03.534738 2026] [security2:error] [pid 13547:tid 13580] [client 91.192.10.179:40696] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "debtsuspensionrights.credit-card-cap.com"] [uri "/.git/HEAD"] [unique_id "akLEN_KtqszCjsxJyKrU6wAAAUM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-06-29 19:09:35
(12 hours ago)
[MonJun2921:09:30.4935552026][security2:error][pid3544228:tid3544232][client91.192.10.179:0]ModSecur ...
show more
[MonJun2921:09:30.4935552026][security2:error][pid3544228:tid3544232][client91.192.10.179:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"dc-graphicart.com.81-17-25-250.cpanel.site\"][uri\"/.git/HEAD\"][unique_id\"akLC6tdqVSdqmjfeHKXWzwAAAQE\"]
show less
Hacking
Web App Attack
Anonymous
2026-06-29 18:37:12
(13 hours ago)
Bot / seems abusive / Apache connections: 66
DDoS Attack
Web Spam
Bad Web Bot
Web App Attack
๐จ๐ญ
Origon
2026-06-29 18:30:59
(13 hours ago)
http-sensitive-files - IP: 91.192.10.179 - time="2026-06-29T20:30:58+02:00" level=info msg="(555f66 ...
show more
http-sensitive-files - IP: 91.192.10.179 - time="2026-06-29T20:30:58+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 91.192.10.179 (DE/213250) : 4h ban on Ip 91.192.10.179" module=db
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 18:09:06
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 91.192.10.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 14:08:59.807092 2026] [security2:error] [pid 6569:tid 6701] [client 91.192.10.179:60604] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crosscountry.ahsdistance.org"] [uri "/.git/HEAD"] [unique_id "akK0uxYFZVZkcqvSFfvXMQAAAJg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dwmp
2026-06-29 17:59:47
(13 hours ago)
[29/Jun/2026:19:59:45.167746 +0200] akKykVKQdcqpb0yUpI4M2QAAAAU 91.192.10.179 55510 38.242.227.117 7 ...
show more
[29/Jun/2026:19:59:45.167746 +0200] akKykVKQdcqpb0yUpI4M2QAAAAU 91.192.10.179 55510 38.242.227.117 7081
[29/Jun/2026:19:59:45.559057 +0200] akKykTQ5raI7RLYOqXEAowAAAEY 91.192.10.179 55514 38.242.227.117 7081
[29/Jun/2026:19:59:47.172827 +0200] akKyk23YmVLXn7-mT--JuAAAAIM 91.192.10.179 55552 38.242.227.117 7081
...
show less
Brute-Force
SSH
๐ซ๐ท
masterguru
2026-06-29 17:44:53
(14 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack