π¬π§
Oakley
2026-07-14 19:04:25
(22 hours ago)
(confirmed_bot_sig) Confirmed bot
Hacking
π«π·
Sklurk
2026-07-08 01:12:08
(1 week ago)
Web App Attack
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-05 00:49:21
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 20:49:10.925128 2026] [security2:error] [pid 22802:tid 22802] [client 209.50.162.171:41297] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||192.64.151.7|F|2"] [data ".cfg"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "192.64.151.7"] [uri "/000000000000.cfg"] [unique_id "akmqBvL1tpYxPmjLE7Rg5gAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
suble.org
2026-06-15 04:50:34
(1 month ago)
209.50.162.171 - - [15/Jun/2026:06:50:33 +0200] "GET http://www.kaffeetest.net/wp-sitemap.xml HTTP/1 ...
show more
209.50.162.171 - - [15/Jun/2026:06:50:33 +0200] "GET http://www.kaffeetest.net/wp-sitemap.xml HTTP/1.1" 404 481 "-" "Mozilla/5.0"
...
show less
Bad Web Bot
πͺπΈ
librebit
2026-05-17 04:35:24
(1 month ago)
Brute force
Brute-Force
π²πΎ
Rizzy
2025-12-14 20:54:38
(7 months ago)
Multiple WAF Violations
Brute-Force
Web App Attack
Anonymous
2025-12-14 17:28:25
(7 months ago)
botnet
DDoS Attack
πΊπΈ
TPI-Abuse
2025-11-24 07:50:14
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:49:43.233861 2025] [security2:error] [pid 25107:tid 25182] [client 209.50.162.171:28233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ceol.ceol.us"] [uri "/.git/HEAD"] [unique_id "aSQOF3wP-7kPfeYpiM7TvQAAAco"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 07:16:46
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:16:43.420528 2025] [security2:error] [pid 2505:tid 2505] [client 209.50.162.171:47931] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.matronasoy.com"] [uri "/.env"] [unique_id "aSQGWyLRct6VSJb_TxcG8gAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 05:05:49
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:05:45.502113 2025] [security2:error] [pid 3965259:tid 3965338] [client 209.50.162.171:50613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.howlerrock.workconfident.com"] [uri "/.svn/wc.db"] [unique_id "aSPnqcHsvdKIeQe-cM8gJgAAAU0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 04:49:12
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:49:08.419083 2025] [security2:error] [pid 13773:tid 13773] [client 209.50.162.171:10535] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.paguilar.com"] [uri "/.svn/wc.db"] [unique_id "aSPjxJns_UmjlvLZGQWOiwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 04:31:56
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.162.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:31:39.129277 2025] [security2:error] [pid 20987:tid 20987] [client 209.50.162.171:12823] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.qualityelevatorcabs.com"] [uri "/.svn/wc.db"] [unique_id "aSPfq9Qvli2WzRpb5dxwngAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-14 08:36:18
(8 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
π©πͺ
ps-center
2025-10-27 10:49:18
(8 months ago)
SS5-W: TCP-Scanner. Port: 22
Port Scan
Anonymous
2025-10-27 07:40:27
(8 months ago)
wordpress-trap
Web App Attack