π«π·
Sklurk
2026-07-08 00:41:09
(1 hour ago)
Web App Attack
Web App Attack
π«π·
Sklurk
2026-06-20 03:23:10
(2 weeks ago)
Web App Attack
Web App Attack
π³π±
Site.eu
2026-04-03 10:56:43
(3 months ago)
Excessive 404/403 errors
Brute-Force
πΊπΈ
TPI-Abuse
2026-02-10 03:11:58
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:11:47.721079 2026] [security2:error] [pid 22281:tid 22281] [client 209.50.191.84:53555] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnaird.enterprises"] [uri "/.git/config"] [unique_id "aYqh83sKnC_k7uQ-HjqscwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 02:27:17
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:27:11.527640 2026] [security2:error] [pid 14965:tid 14965] [client 209.50.191.84:14353] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kimmimorikawa.com"] [uri "/admin/.env"] [unique_id "aYqXf19-H6Yzc7YNvHuX_gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 00:47:41
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:47:33.385542 2026] [security2:error] [pid 2618302:tid 2618302] [client 209.50.191.84:63753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keysenterprise.net"] [uri "/wp/.git/config"] [unique_id "aYqAJfQY21IzSNC4GKjK_gAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 00:25:56
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:25:48.602854 2026] [security2:error] [pid 824:tid 824] [client 209.50.191.84:60305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hudready.com"] [uri "/dev/.git/config"] [unique_id "aYp7DJ6-XqSYtOW0mJ1P8QAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 22:37:50
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:37:45.472919 2026] [security2:error] [pid 10734:tid 10734] [client 209.50.191.84:23329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "macroprintbooks.com"] [uri "/.env.production"] [unique_id "aYphucIkupXNCmCFyvIqtgAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
myagent.site
2026-02-09 22:18:04
(4 months ago)
Blocking for trying to access an exploit file: /.env.staging
Hacking
πΊπΈ
TPI-Abuse
2026-02-09 22:06:45
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:06:37.611753 2026] [security2:error] [pid 878609:tid 878664] [client 209.50.191.84:33931] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotelpuertadelsolcr.com"] [uri "/admin/.git/config"] [unique_id "aYpabYl0Zv13If8rJtjbxQAAAVA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 20:59:36
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:59:21.528869 2026] [security2:error] [pid 28507:tid 28507] [client 209.50.191.84:44601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karakostasconstruction.com"] [uri "/.env.save"] [unique_id "aYpKqeCnOXoSDjNqhCVngQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π΅π±
nfsec.pl
2026-01-22 03:23:30
(5 months ago)
209.50.191.84 - - [22/Jan/2026:03:23:27 +0000] "GET /index.php?option=com_search%27%29%20OR%20CHAR%2 ...
show more
209.50.191.84 - - [22/Jan/2026:03:23:27 +0000] "GET /index.php?option=com_search%27%29%20OR%20CHAR%28122%29%7C%7CCHAR%2877%29%7C%7CCHAR%2874%29%7C%7CCHAR%2883%29%3DREGEXP_SUBSTRING%28REPEAT%28LEFT%28CRYPT_KEY%28CHAR%2865%29%7C%7CCHAR%2869%29%7C%7CCHAR%2883%29%2CNULL%29%2C0%29%2C500000000%29%2CNULL%29--&searchword=%20atak&searchphrase=exact&ordering=newest HTTP/1.1" 403 5840 "-" "Mozilla/5.0 (X11; CrOS x86_64 14816.131.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36"
209.50.191.84 - - [22/Jan/2026:03:23:27 +0000] "GET /index.php?option=com_search%27%29%20ORDER%20BY%201--%20FdIs&searchword=%20atak&searchphrase=exact&ordering=newest HTTP/1.1" 403 5840 "-" "Mozilla/5.0 (X11; CrOS x86_64 14816.131.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36"
209.50.191.84 - - [22/Jan/2026:03:23:28 +0000] "GET /index.php?option=com_search%27%29%20ORDER%20BY%206010--%20JWnp&searchword=%20atak&searchphrase=exact&ordering=newest HTTP/1.1" 403 5840 "-" "Mozil
...
show less
Exploited Host
Web App Attack
π©πͺ
Packets-Decreaser.NET
2025-12-29 14:00:53
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
π±π»
garmtech.com
2025-12-08 04:44:48
(6 months ago)
IM360 WAF: Attempt to upload malware
Hacking
πΊπΈ
TPI-Abuse
2025-11-24 05:23:49
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.191.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:23:42.836124 2025] [security2:error] [pid 3192:tid 3192] [client 209.50.191.84:48471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.streaklesstoiletpaper.com"] [uri "/.git/HEAD"] [unique_id "aSPr3nJr0R1Ar3TvSfvl7QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack