๐บ๐ธ
Peter Racine
2026-07-08 19:48:00
(1 day ago)
Credential stuffing - exchange accounts
Brute-Force
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐ณ๐ฑ
i-turnradio.nl
2026-01-28 13:28:11
(5 months ago)
2026-01-28 14:28:10 (CET) ~ Blocked by abusescan risk assessment
Web App Attack
Anonymous
2025-11-30 13:06:43
(7 months ago)
wordpress-trap
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 05:05:29
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:05:21.267448 2025] [security2:error] [pid 16709:tid 16709] [client 216.26.228.214:33341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.highspringtradingpost.com"] [uri "/.env"] [unique_id "aSaKked5xVB4gq667Rz6MAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 04:57:29
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:57:06.519499 2025] [security2:error] [pid 10061:tid 10061] [client 216.26.228.214:14949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.mykelmilur.com"] [uri "/.svn/wc.db"] [unique_id "aSU3IlQ2w8Xpiy9ML5QDswAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 03:51:52
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:51:45.002794 2025] [security2:error] [pid 13895:tid 13911] [client 216.26.228.214:44443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.nicolelmartin.com"] [uri "/.svn/wc.db"] [unique_id "aSUn0cqATJ-N2rrGOLZxUwAAAU4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 03:19:07
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:18:58.706295 2025] [security2:error] [pid 15101:tid 15117] [client 216.26.228.214:41901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.alabamacentralrailroad.com"] [uri "/.svn/wc.db"] [unique_id "aSUgIqNKS2jdjfTVKRdfGwAAAQ0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 02:49:08
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:49:01.277885 2025] [security2:error] [pid 26856:tid 26856] [client 216.26.228.214:52617] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.ericeschenbach.com"] [uri "/.git/HEAD"] [unique_id "aSUZHbWiqZviQDUQhHI8TAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 01:38:18
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:38:13.680612 2025] [security2:error] [pid 1647140:tid 1647178] [client 216.26.228.214:38143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.mentzlaw.com"] [uri "/.git/HEAD"] [unique_id "aSUIhcWdNO_bFaD03ZYOAwAAAMA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 09:18:48
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:18:39.535208 2025] [security2:error] [pid 12972:tid 12972] [client 216.26.228.214:16327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.laughingthunder.com"] [uri "/.svn/wc.db"] [unique_id "aSQi75wRF4i8zaVQyQiGFgAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 09:01:44
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:01:35.135301 2025] [security2:error] [pid 24276:tid 24276] [client 216.26.228.214:34941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.fabandco.com"] [uri "/.git/HEAD"] [unique_id "aSQe74Fv4aV-UQ5nyItE5AAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 08:43:40
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.228.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:43:32.739873 2025] [security2:error] [pid 20274:tid 20274] [client 216.26.228.214:15979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.perlcreativedesign.com"] [uri "/.git/HEAD"] [unique_id "aSQatBs9_f_bfWlsn1k2lQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
10dencehispahard SL
2025-11-19 07:53:09
(7 months ago)
WP probing for vulnerabilities
Hacking
Exploited Host
Anonymous
2025-11-18 17:21:39
(7 months ago)
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.18 is noted in report tim ...
show more
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.18 is noted in report timestamp
show less
Hacking
Brute-Force