๐ซ๐ฎ
Christopher Hughes
2026-06-14 16:45:21
(1 month ago)
107.174.194.188 - - [14/Jun/2026:17:45:20 +0100] "GET /robots.txt HTTP/1.1" 200 3738 "-" "Googlebot" ...
show more
107.174.194.188 - - [14/Jun/2026:17:45:20 +0100] "GET /robots.txt HTTP/1.1" 200 3738 "-" "Googlebot"
...
show less
Web App Attack
๐ซ๐ท
Sklurk
2026-02-21 16:09:12
(4 months ago)
Web App Attack
Web App Attack
๐บ๐ธ
ersei.net
2026-02-18 10:27:18
(4 months ago)
Web app exploiting
Web App Attack
๐ณ๐ฑ
soverin
2026-01-31 18:40:24
(5 months ago)
Network scan on port 443
Email Spam
๐บ๐ธ
TPI-Abuse
2026-01-16 19:08:28
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 107.174.194.188 (107-174-194-188-host.colocross ...
show more
(mod_security) mod_security (id:210492) triggered by 107.174.194.188 (107-174-194-188-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 14:08:22.183626 2026] [security2:error] [pid 15592:tid 15592] [client 107.174.194.188:59557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.nbcnewsradio.com"] [uri "/.env.www"] [unique_id "aWqMpoHs4d6gkFcN5XQRhAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-10-01 15:02:35
(9 months ago)
(mod_security) mod_security (id:211190) triggered by 107.174.194.188 (107-174-194-188-host.colocross ...
show more
(mod_security) mod_security (id:211190) triggered by 107.174.194.188 (107-174-194-188-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 11:01:08.899692 2025] [security2:error] [pid 17241:tid 17250] [client 107.174.194.188:40813] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||kettlehill.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /wp-content/plugins/count-per-day/download.php?n=1&f=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.com"] [uri "/wp-content/plugins/count-per-day/download.php"] [unique_id "aN1CNKh4GLz6vZLSqBywzgAAAIM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-08-01 07:18:18
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 107.174.194.188 (107-174-194-188-host.colocross ...
show more
(mod_security) mod_security (id:210492) triggered by 107.174.194.188 (107-174-194-188-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 01 03:18:13.738335 2025] [security2:error] [pid 3712160:tid 3712195] [client 107.174.194.188:54667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.net"] [uri "/htaccess_for_page_not_found_redirects.htaccess"] [unique_id "aIxqNdc_-1Eg368SpPh0dQAAAJI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-06-01 06:23:55
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 107.174.194.188 (107-174-194-188-host.colocross ...
show more
(mod_security) mod_security (id:210730) triggered by 107.174.194.188 (107-174-194-188-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 02:23:50.082243 2025] [security2:error] [pid 2256135:tid 2256194] [client 107.174.194.188:46765] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||kettlehill.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.com"] [uri "/kettlehill.com/errors.log"] [unique_id "aDvx9q49PdggYnA6bssmxQAAAFI"], referer: http://kettlehill.com/kettlehill.com/errors.log
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-28 20:05:14
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 107.174.194.188 (107-174-194-188-host.colocross ...
show more
(mod_security) mod_security (id:210730) triggered by 107.174.194.188 (107-174-194-188-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 28 16:05:04.384759 2025] [security2:error] [pid 1833196:tid 1833196] [client 107.174.194.188:47235] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.farmers123.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.farmers123.com"] [uri "/log/error.log"] [unique_id "aDdscADegqjjWcpaf4K64AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-05-01 08:40:14
(1 year ago)
| Common web attack.
Hacking
SQL Injection
Web App Attack
๐จ๐ญ
backslash
2025-03-20 05:40:09
(1 year ago)
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
Bad Web Bot