๐ซ๐ท
ELYAZ
2026-07-01 08:53:56
(1 day ago)
(y4) Failed scan -byebye- from 209.50.180.111 (GB/United Kingdom/-): (CF_ENABLE)
Hacking
๐ซ๐ท
ELYAZ
2026-06-30 06:56:06
(2 days ago)
(y4) Failed scan -byebye- from 209.50.180.111 (GB/United Kingdom/-): (CF_ENABLE)
Hacking
๐ฒ๐ฝ
octageeks.com
2026-06-29 04:12:26
(3 days ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ณ๐ฑ
soverin
2026-05-21 21:30:28
(1 month ago)
Network scan on port 80
Email Spam
Anonymous
2026-05-08 04:15:24
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐จ๐ญ
backslash
2026-01-19 07:00:48
(5 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:01:23
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐บ๐ธ
TPI-Abuse
2025-11-25 04:21:05
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:20:51.495744 2025] [security2:error] [pid 783551:tid 783551] [client 209.50.180.111:60859] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.chriseaton.com"] [uri "/.svn/wc.db"] [unique_id "aSUuo142VvCYxT12WsCY_AAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 02:42:17
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:42:11.605395 2025] [security2:error] [pid 31466:tid 31466] [client 209.50.180.111:26943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dancingorchidvillas.com"] [uri "/.svn/wc.db"] [unique_id "aSUXg-pKO9W6A903XC5mZwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 02:13:53
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:13:48.156837 2025] [security2:error] [pid 16368:tid 16368] [client 209.50.180.111:53563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.newmooncafe.com"] [uri "/.env"] [unique_id "aSUQ3ILgQFXX94orpqtwAgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 01:57:54
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:57:48.008998 2025] [security2:error] [pid 21381:tid 21381] [client 209.50.180.111:19679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.pamelalambert.com"] [uri "/.svn/wc.db"] [unique_id "aSUNHFPfMqdDqkZlfAI_yAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Bytemark
2025-10-19 03:21:03
(8 months ago)
Oct 19 04:20:10 dlcentre3 sshd[21690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 e ...
show more
Oct 19 04:20:10 dlcentre3 sshd[21690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.50.180.111
Oct 19 04:20:11 dlcentre3 sshd[21690]: Failed password for invalid user [email protected] from 209.50.180.111 port 57643 ssh2
show less
Brute-Force
SSH
๐ง๐ช
voormedia
2025-10-16 05:33:25
(8 months ago)
Accessed trap at '/wp-login.php'
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-10-15 10:26:15
(8 months ago)
(mod_security) mod_security (id:225170) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 209.50.180.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 15 06:26:08.021869 2025] [security2:error] [pid 1283:tid 1283] [client 209.50.180.111:34783] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.televisonic.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.televisonic.com"] [uri "/wp/wp-json/wp/v2/users"] [unique_id "aO92wNIMbiccMIVedp6CVgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack