๐บ๐ธ
ipblock.com
2025-12-25 02:10:00
(6 months ago)
IPBlock protected site ID [955-wdo][s=02].
Robotic site crawling, undeclared spider
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2025-12-21 01:07:26
(6 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฒ๐น
Malta
2025-12-15 07:46:30
(6 months ago)
213.109.160.195 - - [15/Dec/2025:08:46:30 +0100] "GET /wp-json/wp/v2/users/51 HTTP/1.1" "Mozilla/5.0 ...
show more
213.109.160.195 - - [15/Dec/2025:08:46:30 +0100] "GET /wp-json/wp/v2/users/51 HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0"
show less
VPN IP
Hacking
Web App Attack
๐ต๐น
Subnet Shadow Specter
2025-11-30 08:39:27
(7 months ago)
Trolling for resource vulnerabilities. User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:145.0) G ...
show more
Trolling for resource vulnerabilities. User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:145.0) Gecko/20100101 Firefox/145.0. Auto blocked and Banned.
show less
Hacking
Bad Web Bot
Web App Attack
Anonymous
2025-10-31 03:43:46
(8 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2025-10-13 14:47:36
(8 months ago)
(mod_security) mod_security (id:210730) triggered by 213.109.160.195 (v2202504233747335199.happysrv. ...
show more
(mod_security) mod_security (id:210730) triggered by 213.109.160.195 (v2202504233747335199.happysrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 13 10:47:28.386853 2025] [security2:error] [pid 659:tid 659] [client 213.109.160.195:50560] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.alexgitlin.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.alexgitlin.com"] [uri "/npp/necromandus.htm/alexgitlin.com"] [unique_id "aO0RAEjYZI7jAm3JaZ0jUwAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2025-09-27 03:04:21
(9 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-09-13 14:01:10
(9 months ago)
(mod_security) mod_security (id:240950) triggered by 213.109.160.195 (v2202504233747335199.happysrv. ...
show more
(mod_security) mod_security (id:240950) triggered by 213.109.160.195 (v2202504233747335199.happysrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 13 10:01:05.273550 2025] [security2:error] [pid 21330:tid 21330] [client 213.109.160.195:50354] ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)||beckersystems.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "beckersystems.net"] [uri "/beckerwiki/index.php"] [unique_id "aMV5ISaiJGK9eRmjYRjDgwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
Might Man
2025-09-09 13:35:00
(10 months ago)
h
Hacking
Exploited Host
Web App Attack
๐ฎ๐ฉ
hermawan
2025-09-03 19:04:29
(10 months ago)
[Thu Sep 04 02:03:54.591566 2025] [security2:error] [pid 1211512:tid 140448072967872] [client 213.10 ...
show more
[Thu Sep 04 02:03:54.591566 2025] [security2:error] [pid 1211512:tid 140448072967872] [client 213.109.160.195:57780] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "security.txt" at REQUEST_FILENAME. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "69"] [id "448101"] [msg "BAD REQUEST FILENAME - Detected and Blocked"] [data "Matched Data: security.txt found within REQUEST_FILENAME: /.well-known/security.txt request_line = GET /.well-known/security.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/.well-known/security.txt"] [unique_id "aLiRGhtoTZQE4lWlEa0OcgAAAdQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1211560] [S1QPRCrDYB8] [aLiRGhtoTZQE4lWlEa0OcgAAAdQ] keep_alive=[0] [2025-09-04 02:03:54.591569] [R:aLiRGhtoTZQE4lWlEa0OcgAAAdQ] UA:'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.3124.85' Host:'sta
...
show less
Hacking
Web App Attack
๐ฆ๐ท
RocketEmi
2025-09-02 00:09:54
(10 months ago)
Intento de hackeo
Brute-Force
Anonymous
2025-08-30 00:55:28
(10 months ago)
SuspiciousC Activity detected by FMBAD System 2025-08-30 03:55:28
Hacking
Bad Web Bot
Web App Attack
๐ญ๐ณ
unph
2025-08-29 15:08:07
(10 months ago)
Intento de acceso sospechoso en el login de WordPress
Brute-Force
Anonymous
2025-08-29 13:55:11
(10 months ago)
Bad Request bfa32dd4
Port Scan
Hacking
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2025-08-26 00:05:22
(10 months ago)
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot