๐น๐ท
SeczarSecureOps
2026-07-07 08:23:04
(6 hours ago)
Auto-blocked by Seczar SecureOps โ DNS Flood / Tunneling Suspected (1974 events in 5min) at 2026-07- ...
show more
Auto-blocked by Seczar SecureOps โ DNS Flood / Tunneling Suspected (1974 events in 5min) at 2026-07-07 08:23
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 01:36:25
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.69.251.200 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.251.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 21:36:21.520299 2026] [security2:error] [pid 32392:tid 32392] [client 172.69.251.200:10629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web221.dnchosting.com"] [uri "/.htaccess"] [unique_id "akMdlb66R7NGHy1HG5PKQQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-06-28 23:47:21
(1 week ago)
High error rate and elevated request volume targeting cPanel servers
Bad Web Bot
๐บ๐ฆ
URAN Publishing Service
2026-06-28 05:53:45
(1 week ago)
172.69.251.200 - - [28/Jun/2026:08:53:43 +0300] "GET /etc/passwd HTTP/1.1" 404 783 "-" "Mozilla/5.0 ...
show more
172.69.251.200 - - [28/Jun/2026:08:53:43 +0300] "GET /etc/passwd HTTP/1.1" 404 783 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.69.251.200 - - [28/Jun/2026:08:53:44 +0300] "GET /etc/passwd HTTP/1.1" 404 761 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
Lee Daniel
2026-06-26 03:16:35
(1 week ago)
172.69.251.200 - - [25/Jun/2026:23:16:32 -0400] "GET /requirements.txt HTTP/1.1" 404 13104 "-" "Mozi ...
show more
172.69.251.200 - - [25/Jun/2026:23:16:32 -0400] "GET /requirements.txt HTTP/1.1" 404 13104 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.69.251.200 - - [25/Jun/2026:23:16:32 -0400] "GET /api/http/routers HTTP/1.1" 404 13101 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.69.251.200 - - [25/Jun/2026:23:16:33 -0400] "GET /signin HTTP/1.1" 404 13101 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.69.251.200 - - [25/Jun/2026:23:16:34 -0400] "GET /Pipfile HTTP/1.1" 404 13104 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.69.251.200 - - [25/Jun/2026:23:16:34 -0400] "GET /api/http/routers HTTP/1.1" 404 13104 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 09:43:24
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 172.69.251.200 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.251.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 05:43:16.857553 2026] [security2:error] [pid 25560:tid 25560] [client 172.69.251.200:10417] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ctrussell.us|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ctrussell.us"] [uri "/tox.ini"] [unique_id "ajO9tFxeo4mlt8rimJUu6wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
gu-alvareza
2026-06-18 07:05:43
(2 weeks ago)
Web.Server.Password.File.Access
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-17 01:54:01
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 172.69.251.200 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.251.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 21:53:57.932565 2026] [security2:error] [pid 22865:tid 22865] [client 172.69.251.200:9382] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||berklie.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "berklie.com"] [uri "/tox.ini"] [unique_id "ajH-Nf6A8uKvbE6D2qHhUgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Mendip_Defender
2026-06-15 22:59:42
(3 weeks ago)
172.69.251.200 - - [15/Jun/2026:23:59:30 +0100] "GET /requirements.txt HTTP/1.1" 404 51186 "-" "Mozi ...
show more
172.69.251.200 - - [15/Jun/2026:23:59:30 +0100] "GET /requirements.txt HTTP/1.1" 404 51186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.69.251.200 - - [15/Jun/2026:23:59:31 +0100] "GET /Pipfile.lock HTTP/1.1" 404 51192 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.69.251.200 - - [15/Jun/2026:23:59:34 +0100] "GET /flask-admin/ HTTP/1.1" 404 51186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Hacking
Web App Attack
Anonymous
2026-05-15 11:54:59
(1 month ago)
Aggressive web scan
Web App Attack
Anonymous
2024-10-10 09:27:21
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-10-05 09:31:35
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-10-03 05:00:59
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-09-28 10:04:10
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-09-26 08:47:09
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH