๐ฆ๐บ
MAGIC
2026-06-19 05:32:54
(1 week ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-03 04:50:41
(4 weeks ago)
(mod_security) mod_security (id:210730) triggered by 185.94.33.225 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 185.94.33.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 00:50:00.021096 2026] [security2:error] [pid 8816:tid 8816] [client 185.94.33.225:27857] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Darcy/Thumbs.db"] [unique_id "ah-yeBuC_al7_spHMrCS1wAAAAY"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Darcy/
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-24 12:25:21
(1 month ago)
185.94.33.225 - - [24/May/2026:12:25:19 +0000] "GET /.env_old HTTP/1.1" 302 3601 "-" "Mozilla/5.0 (W ...
show more
185.94.33.225 - - [24/May/2026:12:25:19 +0000] "GET /.env_old HTTP/1.1" 302 3601 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:01:05
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐ฉ๐ช
HandyTreff.de
2025-12-28 23:10:50
(6 months ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -28.111 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -28.111 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Sa
show less
Bad Web Bot
Web App Attack
Anonymous
2025-09-27 18:55:25
(9 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
Anonymous
2025-09-26 12:20:38
(9 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
๐บ๐ธ
Psycho Solutions LLC
2025-08-18 06:53:59
(10 months ago)
Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-json/wp/v2/users - User A ...
show more
Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-json/wp/v2/users - User Agent: N/A - Timestamp: 8/18/2025 6:53 am (UTC-6)
show less
Web Spam
Hacking
Bad Web Bot
Web App Attack
Anonymous
2025-08-16 20:06:57
(10 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2025-06-20 22:53:45
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 185.94.33.225 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 185.94.33.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 18:53:41.946376 2025] [security2:error] [pid 2951429:tid 2951429] [client 185.94.33.225:40325] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Baldwin/Thumbs.db"] [unique_id "aFXmdVfhyrteTVULdmdkdwAAAA0"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Baldwin/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2025-06-19 09:50:08
(1 year ago)
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-05-16 02:12:52
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 185.94.33.225 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 185.94.33.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 15 22:12:46.587480 2025] [security2:error] [pid 600312:tid 600312] [client 185.94.33.225:28413] [client 185.94.33.225] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||michaelmoorefield.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "michaelmoorefield.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aCafHpYPsY4Xh_igZXYlywAAAAc"], referer: https://michaelmoorefield.com/wp-json/wp/v2/users/
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-02-16 08:20:40
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2025-01-26 21:25:15
(1 year ago)
Automatic report - Vulnerability scan
/RDWeb/Pages/en-US/login.aspx
Web App Attack
Anonymous
2025-01-25 04:40:17
(1 year ago)
Automatic report - Vulnerability scan
/RDWeb/Pages/en-US/login.aspx
Web App Attack