π«π·
Sklurk
2026-07-09 00:51:09
(2 hours ago)
Web App Attack
Web App Attack
π«π·
Sklurk
2026-07-08 00:32:10
(1 day ago)
Web App Attack
Web App Attack
π«π·
Sklurk
2026-06-17 00:19:37
(3 weeks ago)
Web App Attack
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-29 02:57:32
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 21:57:25.607506 2025] [security2:error] [pid 2235224:tid 2235224] [client 216.26.239.94:21519] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||accentcorporatemedia.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "accentcorporatemedia.com"] [uri "/dump.sql"] [unique_id "aSphFcRZJSketCpg0qjVyQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-28 19:51:21
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 14:51:18.493418 2025] [security2:error] [pid 24595:tid 24595] [client 216.26.239.94:33965] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||aandsmetal.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "aandsmetal.com"] [uri "/backup.sql"] [unique_id "aSn9NoxHOt6guek5EhaYpwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
myagent.site
2025-11-28 09:44:15
(7 months ago)
Blocking for trying to access an exploit file: /.env.development
Hacking
πΊπΈ
TPI-Abuse
2025-11-24 08:23:56
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:23:48.849179 2025] [security2:error] [pid 7734:tid 7734] [client 216.26.239.94:40571] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.bookingsouthafrica.com"] [uri "/.git/HEAD"] [unique_id "aSQWFB1LqUvY6c6Rrl_AZgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 05:45:36
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:45:07.355181 2025] [security2:error] [pid 16632:tid 16632] [client 216.26.239.94:53445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.dymesich.com"] [uri "/.svn/wc.db"] [unique_id "aSPw4yTepDhwAS0Co5dJLgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 04:15:38
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.239.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:15:30.853351 2025] [security2:error] [pid 2308:tid 2308] [client 216.26.239.94:54759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.m1graphics.com"] [uri "/.env"] [unique_id "aSPb4i8J12zOn3rUiQBMXAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-01 23:41:00
(8 months ago)
Unauthorized connection attempt
Brute-Force
πΊπΈ
ISPLtd
2025-10-20 06:03:20
(8 months ago)
Oct 20 00:03:19 216.26.239.94 TCP SPT=37033 DPT=22 SYN
...
Port Scan
SSH