๐ซ๐ท
Sklurk
2026-07-08 01:36:15
(2 days ago)
Web App Attack
Web App Attack
๐ซ๐ท
Sklurk
2026-06-20 02:27:25
(2 weeks ago)
Web App Attack
Web App Attack
๐ซ๐ท
Sklurk
2026-06-17 03:34:51
(3 weeks ago)
Web App Attack
Web App Attack
๐บ๐ธ
mnsf
2026-03-27 02:05:42
(3 months ago)
Scanning/Probing (23)
Brute-Force
Web App Attack
๐จ๐ฆ
Blinker73
2026-03-27 02:01:06
(3 months ago)
209.50.190.72 - - [26/Mar/2026:22:01:01 -0400] "GET /wp/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5 ...
show more
209.50.190.72 - - [26/Mar/2026:22:01:01 -0400] "GET /wp/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
show less
Bad Web Bot
Web App Attack
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐ณ๐ฑ
BlueWire Hosting
2026-02-19 01:56:09
(4 months ago)
Probing websites for vulnerabilities
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-18 23:06:13
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 18:06:06.490687 2026] [security2:error] [pid 14119:tid 14130] [client 209.50.190.72:55721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "velatorioslucenses.com"] [uri "/.env.staging"] [unique_id "aZZF3s7LbDS5IjHn1_w0wQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐ด
INTEQ
2026-02-18 20:31:54
(4 months ago)
Web attack from 209.50.190.72
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-02-18 20:31:14
(4 months ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-02-18 18:36:04
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:35:56.063882 2026] [security2:error] [pid 12090:tid 12090] [client 209.50.190.72:12963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thewritekellys.com"] [uri "/.env"] [unique_id "aZYGjDhxSdWKdzMjFzHS1QAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ps-center
2026-02-18 14:28:11
(4 months ago)
C1: Web Attack GET /admin/.env
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 11:29:34
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:29:31.579230 2025] [security2:error] [pid 24941:tid 24941] [client 209.50.190.72:50241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.34thprs.org"] [uri "/.git/HEAD"] [unique_id "aSbkm2URFEAEqu5BKn102wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 06:04:56
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:04:52.448149 2025] [security2:error] [pid 20885:tid 20885] [client 209.50.190.72:35973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.afjm.net"] [uri "/.svn/wc.db"] [unique_id "aSaYhESpLdfDS77Yn9FbVQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 05:26:31
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.190.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:26:25.093034 2025] [security2:error] [pid 22992:tid 22992] [client 209.50.190.72:31881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.berrysgarden.com"] [uri "/.svn/wc.db"] [unique_id "aSaPgVhO-liaDajujAf4ZAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack