๐ซ๐ท
ELYAZ
2026-07-03 01:43:18
(1 hour ago)
(y4) Failed scan -byebye- from 65.111.12.141 (US/United States/-): (CF_ENABLE)
Hacking
๐ช๐ธ
librebit
2026-06-25 08:54:09
(1 week ago)
Brute force
Brute-Force
๐ซ๐ท
Sklurk
2026-06-23 04:52:00
(1 week ago)
Web App Attack
Web App Attack
๐ซ๐ท
Sklurk
2026-06-20 04:40:49
(1 week ago)
Web App Attack
Web App Attack
๐ฌ๐ง
PeravixGroup
2026-05-07 20:23:21
(1 month ago)
Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ...
show more
Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud
show less
Hacking
Exploited Host
๐ฌ๐ง
PeravixGroup
2026-05-07 06:22:26
(1 month ago)
Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ...
show more
Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud
show less
Hacking
Exploited Host
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐บ๐ธ
TPI-Abuse
2026-02-20 07:33:23
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 02:33:17.470525 2026] [security2:error] [pid 2397:tid 2397] [client 65.111.12.141:54495] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||lozzy.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lozzy.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aZgOPbb-9JAYxvW_bR1YXwAAABg"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 17:28:24
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 12:28:20.384991 2026] [security2:error] [pid 24435:tid 24435] [client 65.111.12.141:60405] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anythingsoldworldwide.com"] [uri "/admin/.git/config"] [unique_id "aYtqtJoPYNpJBsXJ6ej3IgAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 23:48:04
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:47:53.215211 2026] [security2:error] [pid 18508:tid 18508] [client 65.111.12.141:27771] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hteca.com"] [uri "/api/.env"] [unique_id "aYpyKarnXLBc5JOTYZziRAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 23:06:36
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:06:30.229065 2026] [security2:error] [pid 24449:tid 24449] [client 65.111.12.141:10203] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keaborner.com"] [uri "/.env.production"] [unique_id "aYpodmClWXLPXkrtKLP7SQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 21:20:33
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.12.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:20:28.742940 2026] [security2:error] [pid 1809:tid 1809] [client 65.111.12.141:23825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "horseillustration.com"] [uri "/wp/.git/config"] [unique_id "aYpPnPGjF_hvuZU2n0Z9wwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-12-09 07:01:26
(6 months ago)
botnet
DDoS Attack
Anonymous
2025-12-02 21:19:52
(7 months ago)
botnet
DDoS Attack
๐บ๐ธ
octageeks.com
2025-10-27 04:06:42
(8 months ago)
Wordpress malicious attack:[sshd]
Web App Attack