๐ช๐ธ
librebit
2026-05-17 04:23:51
(1 month ago)
Brute force
Brute-Force
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐ฎ๐น
VHosting
2025-12-23 14:05:11
(6 months ago)
Detected attack and reported by a human
DDoS Attack
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
SSH
๐บ๐ธ
fbarela
2025-12-20 02:00:24
(6 months ago)
FortiGate SSL VPN login failures.
Hacking
Brute-Force
๐ฉ๐ช
Packets-Decreaser.NET
2025-11-30 13:09:53
(7 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐บ๐ธ
TPI-Abuse
2025-11-26 10:32:42
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:32:38.832022 2025] [security2:error] [pid 24596:tid 24596] [client 209.50.168.174:13623] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.celiaconaway.com"] [uri "/.git/HEAD"] [unique_id "aSbXRnszLuOVNZpuUdmyggAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 01:28:53
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:28:47.459201 2025] [security2:error] [pid 6526:tid 6526] [client 209.50.168.174:57275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rohan.byles.net"] [uri "/.git/HEAD"] [unique_id "aSZXzw3aFl7TgK_NnsX5UQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 00:07:53
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:07:49.866188 2025] [security2:error] [pid 15411:tid 15411] [client 209.50.168.174:15143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.culhwch.info"] [uri "/.svn/wc.db"] [unique_id "aSZE1RDgYVFDgnzSnuxxJAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
jjnxpct
2025-11-25 04:54:08
(7 months ago)
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ...
show more
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.git/HEAD (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .git/ found within REQUEST_FILENAME: /.git/HEAD]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 08:39:03
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:38:54.920469 2025] [security2:error] [pid 18922:tid 18922] [client 209.50.168.174:48093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.goodpage.com"] [uri "/.git/HEAD"] [unique_id "aSQZnjVvFUvSCW39KkZJpAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 07:51:09
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:51:05.000998 2025] [security2:error] [pid 3495787:tid 3495787] [client 209.50.168.174:37963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.wilsontribe.org"] [uri "/.svn/wc.db"] [unique_id "aSQOaUmQ2T5BmySamZCbKgAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 04:57:07
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:57:03.274150 2025] [security2:error] [pid 3965259:tid 3965341] [client 209.50.168.174:22591] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.aceelectricalsupplies.com"] [uri "/.env"] [unique_id "aSPln8HsvdKIeQe-cM8WhAAAAVA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 00:48:03
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 19:47:26.480863 2025] [security2:error] [pid 7093:tid 7093] [client 209.50.168.174:46515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "personalcareattendants.banis-associates.com"] [uri "/.git/HEAD"] [unique_id "aSOrHl5Q2q3McWqyspl0JQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-14 10:04:49
(7 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-14 01:08:49
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.168.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 20:08:44.712432 2025] [security2:error] [pid 8353:tid 8353] [client 209.50.168.174:24561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.globalvillagecambodia.org"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRaBHLJpyfXzfcxkek8iwQAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack