๐ซ๐ท
Sklurk
2026-06-11 12:25:04
(1 month ago)
Web App Attack
Web App Attack
Anonymous
2026-03-05 21:44:18
(4 months ago)
Forum/form spam
Web Spam
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:01:39
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐บ๐ธ
techboy117
2025-12-22 18:23:29
(6 months ago)
Blocking due to password spraying. Username: rwersten
Brute-Force
๐บ๐ธ
TPI-Abuse
2025-12-10 11:59:51
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 06:59:47.646367 2025] [security2:error] [pid 1486:tid 1486] [client 216.26.230.114:24739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gfsprod.com"] [uri "/.git/HEAD"] [unique_id "aTlgs5eGrNEXASzc6lTnBQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-08 08:04:27
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 03:04:21.820818 2025] [security2:error] [pid 25422:tid 25422] [client 216.26.230.114:29241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lightupaustralia.com"] [uri "/.git/HEAD"] [unique_id "aTaGhfEohTNcseQM7qWJRAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 14:50:58
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 09:50:51.826982 2025] [security2:error] [pid 23949:tid 23949] [client 216.26.230.114:60703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roadtosalvation.org"] [uri "/.env"] [unique_id "aTWUS2xJONi9dDWhaUS6LwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 14:33:34
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 09:33:27.633036 2025] [security2:error] [pid 26974:tid 26974] [client 216.26.230.114:50113] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "perverseconsequences.org"] [uri "/.env"] [unique_id "aTWQN-7VxHEPmSuvRo2HEwAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 09:22:55
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 04:22:49.718150 2025] [security2:error] [pid 12054:tid 12054] [client 216.26.230.114:18701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thebeeplace.com"] [uri "/.env"] [unique_id "aTKkaeNxv40RTLdGxQb4OgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 02:44:55
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.230.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:44:49.944321 2025] [security2:error] [pid 19003:tid 19003] [client 216.26.230.114:58951] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kleens-uk.com"] [uri "/.env"] [unique_id "aTJHIWAjmq9mSe7KWTVphAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-30 01:43:50
(7 months ago)
botnet
DDoS Attack
Anonymous
2025-11-13 21:31:14
(7 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
๐ช๐ธ
10dencehispahard SL
2025-11-07 21:00:04
(8 months ago)
Unauthorized login attempts [ wordpress-xmlrpc]
Brute-Force
Web App Attack
Anonymous
2025-11-01 18:25:41
(8 months ago)
[redacted] 216.26.230.114 - - [01/Nov/2025:19:25:30 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" " ...
show more
[redacted] 216.26.230.114 - - [01/Nov/2025:19:25:30 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Linux; Android 5.0.1; ALE-L23 Build/HuaweiALE-L23) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Mobile Safari/537.36"
[redacted] 216.26.230.114 - - [01/Nov/2025:19:25:31 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/4.0 (compatible; MSIE 5.23; Mac_PowerPC)"
[redacted] 216.26.230.114 - - [01/Nov/2025:19:25:32 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Linux; Android 7.1.1; Moto G Play) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.64 Mobile Safari/537.36"
[redacted] 216.26.230.114 - - [01/Nov/2025:19:25:33 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko"
[redacted] 216.26.230.114 - - [01/Nov/2025:19:25:34 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/4.0 (compatible; MSI
...
show less
Hacking
Web App Attack
Anonymous
2025-10-30 15:26:51
(8 months ago)
WordPress Brute Force
Brute-Force