๐ฉ๐ช
stinpriza
2026-07-12 05:13:12
(3 hours ago)
Web App Attack
Web App Attack
๐ซ๐ท
COMAITE
2026-04-15 15:43:56
(2 months ago)
CMS (WordPress or Joomla) brute force attempt.
Web App Attack
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:01:38
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐บ๐ธ
TPI-Abuse
2025-11-25 03:13:10
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:13:02.419488 2025] [security2:error] [pid 717030:tid 717030] [client 65.111.22.12:39817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.alkin.org"] [uri "/.env"] [unique_id "aSUevtdJan1wq6Iv1XPgVwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 02:56:40
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:56:31.056614 2025] [security2:error] [pid 32734:tid 32753] [client 65.111.22.12:40297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.straight8inc.com"] [uri "/.svn/wc.db"] [unique_id "aSUa3yrPMGOurG3RzwZAPQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 02:09:50
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:09:41.519849 2025] [security2:error] [pid 22553:tid 22553] [client 65.111.22.12:37161] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.medcoarabia.com"] [uri "/.svn/wc.db"] [unique_id "aSUP5cZNBAuEOEWQeIeB5AAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 00:12:34
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:12:30.259638 2025] [security2:error] [pid 3791:tid 3791] [client 65.111.22.12:60723] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dmasoftlab.com"] [uri "/.env"] [unique_id "aST0br-wR-oeHBdPm6dP4AAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 04:27:00
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:26:53.534132 2025] [security2:error] [pid 27188:tid 27188] [client 65.111.22.12:19367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.webmail.awcadvocate.com"] [uri "/.env"] [unique_id "aSPejUIeAYYjAw-_1A1lpgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 03:44:52
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:44:46.970898 2025] [security2:error] [pid 637:tid 637] [client 65.111.22.12:34983] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2ezgroup.com"] [uri "/.env"] [unique_id "aSPUrmWp6gnkt0Pac0homQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-17 01:03:36
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.22.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 20:03:33.144617 2025] [security2:error] [pid 13110:tid 13110] [client 65.111.22.12:15515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.accsbg.org"] [uri "/.env"] [unique_id "aRp0ZRlKnoO7jKG9orJMEgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฟ
lp
2024-11-25 10:33:44
(1 year ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 65.111.22.12
2024-11-25T10:57:48+01:0 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 65.111.22.12
2024-11-25T10:57:48+01:00 vpn Access-Reject 'bosticka' station: 65.111.22.12 auth-type: PAP realm: vse.cz nas: <redacted> called: <redacted> => address-pool: zam_pool msg: '<redacted>'
show less
Brute-Force
Web App Attack
๐จ๐ฟ
lp
2024-10-03 22:53:25
(1 year ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 65.111.22.12
2024-10-03T23:44:21+02:0 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 65.111.22.12
2024-10-03T23:44:21+02:00 vpn Access-Reject 'xplas00' station: 65.111.22.12 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
๐ฎ๐ฉ
BPS-StatisticsIndonesia
2024-09-25 10:09:34
(1 year ago)
WP Login Scan Activities
Web App Attack
Anonymous
2024-07-06 07:51:32
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH