๐บ๐ธ
TPI-Abuse
2026-07-12 22:13:35
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 18:13:29.757668 2026] [security2:error] [pid 31193:tid 31193] [client 172.69.150.133:9915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "relationshipecology.com"] [uri "/.env.local"] [unique_id "alQRiTb2dQxR9coJGdLAYQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 12:36:08
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 08:36:01.840959 2026] [security2:error] [pid 7286:tid 7311] [client 172.69.150.133:12842] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leaderoftheopposition.com"] [uri "/.git/config"] [unique_id "akZbMdN7ayftQe0pZevSFwAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 15:15:25
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 11:15:19.019892 2026] [security2:error] [pid 9303:tid 9303] [client 172.69.150.133:13078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rootsofwellnessayurveda.com"] [uri "/.env.production"] [unique_id "akUvB-tnm7fP0hrTHgTJqQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
oncord
2026-06-28 00:56:25
(2 weeks ago)
Form spam
Web Spam
๐ฉ๐ช
strxmpp
2026-06-18 21:29:10
(3 weeks ago)
172.69.150.133 - - [18/Jun/2026:23:29:10 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 301 681 ...
show more
172.69.150.133 - - [18/Jun/2026:23:29:10 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 301 681 "-" "http://jabberzueri.ch/wp-admin/install.php?step=1"
...
show less
Bad Web Bot
Anonymous
2026-06-12 20:53:20
(1 month ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/install.php
Web App Attack
๐ฉ๐ช
strxmpp
2026-06-10 18:52:59
(1 month ago)
172.69.150.133 - - [10/Jun/2026:20:52:58 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 301 681 ...
show more
172.69.150.133 - - [10/Jun/2026:20:52:58 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 301 681 "-" "http://jabberzueri.ch/wp-admin/install.php?step=1"
...
show less
Bad Web Bot
๐ง๐ท
maviei
2026-06-07 00:03:30
(1 month ago)
2026-06-06T21:03:27.033022-03:00 srv1251771 kernel: [557438.371733] [UFW BLOCK] IN=eth0 OUT= MAC=40: ...
show more
2026-06-06T21:03:27.033022-03:00 srv1251771 kernel: [557438.371733] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=172.69.150.133 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=39052 DF PROTO=TCP SPT=9258 DPT=8443 WINDOW=65535 RES=0x00 SYN URGP=0
2026-06-06T21:03:28.058075-03:00 srv1251771 kernel: [557439.396554] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=172.69.150.133 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=39053 DF PROTO=TCP SPT=9258 DPT=8443 WINDOW=65535 RES=0x00 SYN URGP=0
2026-06-06T21:03:29.081382-03:00 srv1251771 kernel: [557440.419893] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=172.69.150.133 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=39054 DF PROTO=TCP SPT=9258 DPT=8443 WINDOW=65535 RES=0x00 SYN URGP=0
...
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-04 20:28:21
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 16:28:17.257167 2026] [security2:error] [pid 29890:tid 29890] [client 172.69.150.133:11485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stantontownship.org"] [uri "/.git/config"] [unique_id "aiHf4SBClsS4tXWvUfy8sQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 11:45:00
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 07:44:55.184916 2026] [security2:error] [pid 32712:tid 32722] [client 172.69.150.133:13470] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "merart.com"] [uri "/.git/config"] [unique_id "ah7CNwuPhVW5jgiW5FOFLQAAAEA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 08:53:52
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 04:53:45.309132 2026] [security2:error] [pid 12727:tid 12727] [client 172.69.150.133:11066] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jeanniemorrislaw.com"] [uri "/.git/config"] [unique_id "ah6aGb4_zFVO3AiIPocROQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-05-23 08:38:05
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-14 00:56:56
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 20:56:48.863567 2026] [security2:error] [pid 13558:tid 13570] [client 172.69.150.133:11787] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web123.dnchosting.com"] [uri "/.env"] [unique_id "agUd0CC-d4YGl8sDazO4JwAAAIo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WellSpring
2026-05-12 08:52:22
(2 months ago)
wordpress scan on 352.today/wp-admin/install.php โ WellSpr.ing/NetSentinel civic-AI security layer
Bad Web Bot
Web App Attack
Anonymous
2026-04-21 11:56:44
(2 months ago)
2026-04-21T13:56:41.528537+02:00 nimbus sshd[293157]: Invalid user admin from 172.69.150.133 port 63 ...
show more
2026-04-21T13:56:41.528537+02:00 nimbus sshd[293157]: Invalid user admin from 172.69.150.133 port 63202
2026-04-21T13:56:41.694081+02:00 nimbus sshd[293157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.69.150.133
2026-04-21T13:56:43.677708+02:00 nimbus sshd[293157]: Failed password for invalid user admin from 172.69.150.133 port 63202 ssh2
...
show less
Brute-Force
SSH