๐บ๐ธ
cwytech
2026-07-05 11:12:46
(1 day ago)
Fleet-wide ban from the Ghostfleet ๐ป. Triggered by scenario: cwy/wp-us-login-only-high.
Bad Web Bot
Web App Attack
๐ฒ๐น
Malta
2026-07-05 01:15:40
(1 day ago)
209.50.180.145 - - [05/Jul/2026:03:15:39 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux ...
show more
209.50.180.145 - - [05/Jul/2026:03:15:39 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64; rv:120.0) Gecko/20100101 Firefox/120.0"
show less
Hacking
Web App Attack
๐ซ๐ท
ELYAZ
2026-06-30 13:11:17
(6 days ago)
(y4) Failed scan -byebye- from 209.50.180.145 (GB/United Kingdom/-): (CF_ENABLE)
Hacking
๐จ๐ญ
backslash
2026-01-18 12:25:04
(5 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-12-28 16:18:38
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 11:18:21.499763 2025] [security2:error] [pid 1699754:tid 1699780] [client 209.50.180.145:30345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.rawsynergy.com"] [uri "/.env"] [unique_id "aVFYTdMexX79ozvv7tP1NgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
madeit
2025-11-30 04:27:30
(7 months ago)
Web App Attack
๐ซ๐ฎ
Shaik Sai Meera
2025-11-27 10:20:12
(7 months ago)
IM360 WAF: Hidden file access
Brute-Force
๐บ๐ธ
TPI-Abuse
2025-11-26 09:34:01
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:33:55.522131 2025] [security2:error] [pid 20090:tid 20090] [client 209.50.180.145:37347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.capefearastro.org"] [uri "/.svn/wc.db"] [unique_id "aSbJgxWBJjmvg5Ph_mqFEgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 05:49:30
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:49:09.913632 2025] [security2:error] [pid 20520:tid 20520] [client 209.50.180.145:40429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "markaandrews.cosentient.com"] [uri "/.svn/wc.db"] [unique_id "aSVDVRsuSf6HmxuThiHy5wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 04:51:48
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:51:35.584164 2025] [security2:error] [pid 19150:tid 19150] [client 209.50.180.145:31073] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.healthydatasystems.com"] [uri "/.git/HEAD"] [unique_id "aSU118v58S4QAnYlYeUQQQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 03:47:19
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:47:14.024397 2025] [security2:error] [pid 17115:tid 17115] [client 209.50.180.145:23431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.talkingmess.com"] [uri "/.svn/wc.db"] [unique_id "aSUmwgZhCecJzbn2VJ8m8gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 03:32:17
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:32:13.355578 2025] [security2:error] [pid 24903:tid 24903] [client 209.50.180.145:55567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.jimpharris.com"] [uri "/.git/HEAD"] [unique_id "aSUjPb29_o-gE28XyinvjgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 03:11:44
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:11:41.628448 2025] [security2:error] [pid 26448:tid 26448] [client 209.50.180.145:10607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.somehand.com"] [uri "/.git/HEAD"] [unique_id "aSUebcrPOUFEXwGsBRqC2QAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 02:46:27
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:46:23.444666 2025] [security2:error] [pid 16702:tid 16702] [client 209.50.180.145:16441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.929.us"] [uri "/.svn/wc.db"] [unique_id "aSUYfygT9ZpmTJELSh9dWAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 05:12:54
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:12:48.175947 2025] [security2:error] [pid 18325:tid 18350] [client 209.50.180.145:10013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ellicottville.net"] [uri "/.env"] [unique_id "aSPpULibCkDUtlE56PAtigAAAFc"]
show less
Brute-Force
Bad Web Bot
Web App Attack