π²π½
octageeks.com
2026-07-12 04:25:26
(4 days ago)
Wordpress malicious attack:[octaflood]
Web App Attack
πΊπΈ
lostswordfish.com
2026-07-11 22:54:04
(4 days ago)
Wordfence waf block on 1105merrystreet
Web App Attack
π«π·
pm33
2026-07-11 09:25:29
(5 days ago)
Wordpress login attempts
Brute-Force
π«π·
Sklurk
2026-07-09 01:27:11
(1 week ago)
Web App Attack
Web App Attack
π¨π
backslash
2026-01-20 13:30:08
(5 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
πΊπΈ
TPI-Abuse
2025-11-27 19:49:05
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:49:01.728530 2025] [security2:error] [pid 2865:tid 2865] [client 216.26.245.22:32273] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||bitcoincasting.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bitcoincasting.com"] [uri "/.svn/wc.db"] [unique_id "aSirLZWiftk8j-eXgd451wAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πͺ
voormedia
2025-11-26 17:37:44
(7 months ago)
Accessed trap at '/.git/HEAD'
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 05:34:04
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:33:58.667000 2025] [security2:error] [pid 9475:tid 9475] [client 216.26.245.22:57411] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.kaplankrew.com"] [uri "/.env"] [unique_id "aSU_xuWru4595x20IKcRQwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 03:08:55
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:08:49.365240 2025] [security2:error] [pid 23935:tid 23935] [client 216.26.245.22:12493] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.ecodesarrollourbano.com"] [uri "/.git/HEAD"] [unique_id "aSUdwQDL3hdyUXEtDoZeggAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 02:49:20
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:49:06.812833 2025] [security2:error] [pid 5899:tid 5899] [client 216.26.245.22:43327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.anniesherbals.com"] [uri "/.svn/wc.db"] [unique_id "aSUZIrT9viiFWai2zBFmbAAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 01:22:16
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:22:06.653552 2025] [security2:error] [pid 25573:tid 25573] [client 216.26.245.22:59015] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.binglawoffice.com"] [uri "/.svn/wc.db"] [unique_id "aSUEvmzxXKevUEKXlhq6DwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 00:59:38
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:59:33.631268 2025] [security2:error] [pid 1435:tid 1435] [client 216.26.245.22:12699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.arteseros.com"] [uri "/.env"] [unique_id "aST_dTTOYMV3ult1M6LfoAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-02 15:37:09
(8 months ago)
This IP was involved in an brute force and password spray attack on 2025/11/02 07:22:49
Port Scan
Brute-Force
Exploited Host
Web App Attack
πΊπΈ
Rip
2025-11-02 05:44:55
(8 months ago)
Authentication attack attempt. CMS Brute Force - Access Forbidden
Brute-Force
Web App Attack
π«π·
applemooz
2025-11-01 12:11:26
(8 months ago)
WordPress XMLRPC Brute Force Attacks
...
Brute-Force
Web App Attack