๐ซ๐ท
Sklurk
2026-07-18 01:39:22
(16 hours ago)
Web App Attack
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-06-04 21:06:02
(1 month ago)
Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01]
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-06-04 20:05:02
(1 month ago)
Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01,wa02]
Hacking
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-02-23 14:46:07
(4 months ago)
wordpress-trap
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-09 10:49:45
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 05:49:42.094701 2025] [security2:error] [pid 2367:tid 2405] [client 209.50.178.25:32903] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hollyandandreproperties.com"] [uri "/.env"] [unique_id "aTf-xmKfqSO_-kTyMjkSBwAAAU0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-09 08:47:08
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 03:47:01.368080 2025] [security2:error] [pid 25954:tid 25954] [client 209.50.178.25:51633] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stellabluesales.com"] [uri "/.git/HEAD"] [unique_id "aTfiBVgrlZcGy3GzPeipQAAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-08 14:34:03
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 09:33:56.109236 2025] [security2:error] [pid 15431:tid 15431] [client 209.50.178.25:46907] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "unionega.com"] [uri "/.git/HEAD"] [unique_id "aTbh1ObLHccgEUqywnOfXQAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
myagent.site
2025-12-08 02:37:10
(7 months ago)
Blocking for trying to access an exploit file: /.env
Hacking
๐บ๐ธ
TPI-Abuse
2025-12-07 23:39:46
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 18:39:42.183126 2025] [security2:error] [pid 29006:tid 29006] [client 209.50.178.25:34181] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "constructiondomex.com"] [uri "/.env"] [unique_id "aTYQPtjA8EXJTDhnQdLjFQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 13:21:50
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:21:45.143184 2025] [security2:error] [pid 8866:tid 8866] [client 209.50.178.25:45137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "glendaleheritage.org"] [uri "/.svn/wc.db"] [unique_id "aTV_aTPzujM7W33-mL3w1wAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 12:13:40
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:13:33.734995 2025] [security2:error] [pid 15573:tid 15573] [client 209.50.178.25:57325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apropa.org"] [uri "/.git/HEAD"] [unique_id "aTVvbcqFCCbXD_pUazZqfAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-06 13:57:40
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 08:57:34.199744 2025] [security2:error] [pid 21008:tid 21008] [client 209.50.178.25:43739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whysong.net"] [uri "/.git/HEAD"] [unique_id "aTQ2Tg9AOoyJRo-0D7JLqQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 11:42:29
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:42:22.410217 2025] [security2:error] [pid 31676:tid 31676] [client 209.50.178.25:27025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mousseron.com"] [uri "/.git/HEAD"] [unique_id "aTLFHrr1JAEs2xPrK4LUbQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 08:29:31
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:29:28.821317 2025] [security2:error] [pid 29597:tid 29597] [client 209.50.178.25:34193] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adonamusic.com"] [uri "/.git/HEAD"] [unique_id "aTKX6KP7t3ESWDuT56medwAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 08:01:28
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.178.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:01:19.028895 2025] [security2:error] [pid 6510:tid 6510] [client 209.50.178.25:35743] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.insectpolitics.com"] [uri "/.env"] [unique_id "aSQQzxsE_MgUsW60ypAU8gAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack