π³πΏ
Antinson
2026-07-18 12:06:28
(18 hours ago)
Scraping with a high error ratio and request rate Requests to unauthorized or suspicious endpoints ( ...
show more
Scraping with a high error ratio and request rate Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
show less
Bad Web Bot
Anonymous
2026-07-17 20:50:57
(1 day ago)
216.26.237.239 - - [17/Jul/2026:22:50:55 +0200] "GET /.git/ HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Wind ...
show more
216.26.237.239 - - [17/Jul/2026:22:50:55 +0200] "GET /.git/ HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
216.26.237.239 - - [17/Jul/2026:22:50:55 +0200] "GET /.git/COMMIT_EDITMSG HTTP/1.1" 404 2497 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
216.26.237.239 - - [17/Jul/2026:22:50:56 +0200] "GET /.git/hooks/post-commit.sample HTTP/1.1" 404 2517 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
216.26.237.239 - - [17/Jul/2026:22:50:56 +0200] "GET /.git/hooks/post-receive.sample HTTP/1.1" 404 2519 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
216.26.237.239 - - [17/Jul/2026:22:50:56 +0200] "GET /.git/objects/info/packs HTTP/1.1" 404 2505 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleW
...
show less
Bad Web Bot
Web App Attack
π³πΏ
Antinson
2026-06-26 11:06:03
(3 weeks ago)
Scraping with a high error ratio and request rate
Bad Web Bot
πΊπΈ
TPI-Abuse
2025-12-02 23:08:26
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 18:08:19.200441 2025] [security2:error] [pid 17317:tid 17317] [client 216.26.237.239:53439] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "osmanbozkurt.com"] [uri "/.svn/wc.db"] [unique_id "aS9xY6dSis2wiQCCIR7WYQAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-02 05:48:48
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:48:42.482381 2025] [security2:error] [pid 15509:tid 15509] [client 216.26.237.239:48161] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "inspiringindividualindustry.com"] [uri "/.svn/wc.db"] [unique_id "aS59uq_ySsn3xLnafjIESgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-02 05:19:05
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:19:00.000541 2025] [security2:error] [pid 10887:tid 10887] [client 216.26.237.239:60031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dennisdsmith.com"] [uri "/.svn/wc.db"] [unique_id "aS52xAlWZTv_BpE9ROSEXwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-02 04:44:54
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:44:49.148291 2025] [security2:error] [pid 31757:tid 31757] [client 216.26.237.239:47493] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schlegelcreative.com"] [uri "/.env"] [unique_id "aS5uwWwfSau60X9ySklEegAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-02 04:20:10
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:20:01.768683 2025] [security2:error] [pid 24356:tid 24356] [client 216.26.237.239:17807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jessicalevant.com"] [uri "/.env"] [unique_id "aS5o8Wu4Js9LZyGBiWt4EwAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
iNetWorker
2025-12-02 00:46:15
(7 months ago)
trolling for resource vulnerabilities
Web App Attack
π±π»
garmtech.com
2025-11-24 07:35:53
(7 months ago)
Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ...
show more
Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing.
show less
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 07:34:28
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:34:17.950866 2025] [security2:error] [pid 21112:tid 21112] [client 216.26.237.239:9511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.stsis.me"] [uri "/.svn/wc.db"] [unique_id "aSQKeU23PISEHu_vuskh7wAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 06:15:09
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:15:02.734129 2025] [security2:error] [pid 4133561:tid 4133582] [client 216.26.237.239:60759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.aafmglobal.com"] [uri "/.svn/wc.db"] [unique_id "aSP35s6lE8qghk7QOEVmQAAAAFE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 04:53:14
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.237.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:53:08.334536 2025] [security2:error] [pid 18194:tid 18288] [client 216.26.237.239:15327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.ward-bergerhouse.org"] [uri "/.env"] [unique_id "aSPktO9urIyQu8V3f-3gdwAAAIQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-18 23:07:37
(8 months ago)
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.18 is noted in report tim ...
show more
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.18 is noted in report timestamp
show less
Hacking
Brute-Force
Anonymous
2025-11-14 08:42:20
(8 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack