๐บ๐ธ
chronos
2026-06-10 03:45:20
(1 month ago)
[AUTORAVALT][[10/06/2026 - 00:45:19 -03:00 UTC]
Attack from [181.215.65.88] Action: BLocKed
Hacking ...
show more
[AUTORAVALT][[10/06/2026 - 00:45:19 -03:00 UTC]
Attack from [181.215.65.88] Action: BLocKed
Hacking... Unauthorized attempts to access the server.
Web App Attack -> Attempts to probe for or exploit installed web applications such as a CMS like WordPress/Drupal, e-commerce solutions, forum software, phpMyAdmin and various other software plugins/solutions.
]
...
show less
Hacking
Web App Attack
๐ฉ๐ช
LRob
2026-05-26 21:15:05
(1 month ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack
๐ฎ๐น
VHosting
2026-05-21 14:29:55
(1 month ago)
Detected mail brute force attack from 4 different servers
Brute-Force
๐บ๐ธ
dtorrer
2026-04-27 08:05:37
(2 months ago)
Brute-force general attack.
Brute-Force
๐ฎ๐น
A000Z
2026-04-13 09:27:05
(3 months ago)
Fail2Ban: 181.215.65.88 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5. ...
show more
Fail2Ban: 181.215.65.88 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36
show less
Bad Web Bot
๐ฆ๐บ
screwlooseit.com.au
2026-04-07 01:32:39
(3 months ago)
Blocked by CSF 13 firewall - Rule: WPLOGIN
US/United States/-
Web App Attack
Anonymous
2026-02-19 03:20:30
(5 months ago)
Unauthorized connection attempt detected in the last 24 hours
Hacking
Anonymous
2026-02-14 01:35:32
(5 months ago)
Unauthorized connection attempt detected in the last 24 hours
Hacking
Anonymous
2026-02-09 02:05:18
(5 months ago)
Unauthorized connection attempt detected in the last 24 hours
Hacking
๐บ๐ธ
TPI-Abuse
2026-02-03 18:45:59
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 03 13:45:54.393833 2026] [security2:error] [pid 24936:tid 24965] [client 181.215.65.88:31003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.14"] [uri "/conf/.env"] [unique_id "aYJCYlh-Pq7nQXItWz4VVAAAANc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-03 03:27:53
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 02 22:27:44.378900 2026] [security2:error] [pid 2458:tid 2458] [client 181.215.65.88:36883] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.209"] [uri "/wp-admin/.env"] [unique_id "aYFrMKWzaNzG-8kRrMsNaQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-02 17:27:52
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 02 12:27:47.680150 2026] [security2:error] [pid 17455:tid 17455] [client 181.215.65.88:46583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.52"] [uri "/.env"] [unique_id "aYDek7LhZ-ZYd01a8Ow5jgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-02 13:07:10
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 02 08:07:04.238899 2026] [security2:error] [pid 9656:tid 9656] [client 181.215.65.88:35085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.218"] [uri "/conf/.env"] [unique_id "aYCheJZ6sLoTS3-wfOiDpQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-02 04:20:27
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 23:20:21.435931 2026] [security2:error] [pid 12005:tid 12005] [client 181.215.65.88:23347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.230"] [uri "/conf/.env"] [unique_id "aYAmBaFbE9LJBa23_b6uyAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-02 03:33:37
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 181.215.65.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 22:33:32.024854 2026] [security2:error] [pid 1051:tid 1051] [client 181.215.65.88:38653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.66"] [uri "/conf/.env"] [unique_id "aYAbDGE47vFWyOXFU2wDgwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack