π¨π
backslash
2026-05-10 07:18:10
(3 weeks ago)
Bad Web Bot
πͺπΈ
10dencehispahard SL
2026-01-26 12:15:26
(4 months ago)
Wordpress probing for vulnerabilities
Hacking
Exploited Host
πΊπΈ
TPI-Abuse
2026-01-20 16:38:17
(4 months ago)
(mod_security) mod_security (id:240335) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 11:38:10.152793 2026] [security2:error] [pid 2149982:tid 2149982] [client 65.111.27.10:32463] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 65.111.27.10 (+1 hits since last alert)|www.echelonts.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.echelonts.com"] [uri "/xmlrpc.php"] [unique_id "aW-vcuiiOjM8qfarphNnIwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π±π»
garmtech.com
2026-01-12 04:31:05
(4 months ago)
IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 06-31.65.111.27.10.web-spammer ...
show more
IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 06-31.65.111.27.10.web-spammers.v2.rbl.imunify.com._v4 succeeded.
show less
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-09 05:37:26
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 00:37:21.332300 2025] [security2:error] [pid 30932:tid 31070] [client 65.111.27.10:26669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandbarsteve.com"] [uri "/.git/HEAD"] [unique_id "aTe1kUbvX1NjVG7zXD7q6AAAAQ0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-09 04:05:21
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 23:05:14.982906 2025] [security2:error] [pid 3447:tid 3557] [client 65.111.27.10:21231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandiegosamband.com"] [uri "/.env"] [unique_id "aTef-rgiR6zZfl8422hQMAAAAFY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-07 15:42:27
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:42:23.203943 2025] [security2:error] [pid 20726:tid 20726] [client 65.111.27.10:45061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wildimaginings.org"] [uri "/.env"] [unique_id "aTWgX3DjulO8Q5UqEdNfgAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-07 15:09:02
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:08:58.587471 2025] [security2:error] [pid 32747:tid 32758] [client 65.111.27.10:54205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "southsideeconomic.org"] [uri "/.env"] [unique_id "aTWYiuHycua3h1op5LizVgAAAIk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³π±
jjnxpct
2025-12-07 04:54:23
(5 months ago)
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ...
show more
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.git/HEAD (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .git/ found within REQUEST_FILENAME: /.git/HEAD]
show less
Hacking
Web App Attack
π©πͺ
Vegascosmetics
2025-12-06 22:50:18
(5 months ago)
Kingcopy(AI-IDS):IP does Multiple AWS Environment Abuse
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-06 13:30:05
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 08:29:56.434765 2025] [security2:error] [pid 25272:tid 25272] [client 65.111.27.10:21861] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "telecompros.net"] [uri "/.svn/wc.db"] [unique_id "aTQv1KE3FEbUOSt27YXJiAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-05 12:16:03
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 07:15:56.121349 2025] [security2:error] [pid 3351:tid 3351] [client 65.111.27.10:9649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "royaleliteclub.com"] [uri "/.git/HEAD"] [unique_id "aTLM_OWgbswig-jjU-7tcgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-05 11:11:35
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:11:28.783738 2025] [security2:error] [pid 7432:tid 7432] [client 65.111.27.10:20225] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "milajarecords.com"] [uri "/.svn/wc.db"] [unique_id "aTK94EN0HuB4sR37FqPkXAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-05 07:40:18
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 02:40:11.896924 2025] [security2:error] [pid 20987:tid 20987] [client 65.111.27.10:22245] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "my-spec.com"] [uri "/.svn/wc.db"] [unique_id "aTKMW4UvjXov7st9uglxzQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-05 03:44:22
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.27.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:44:16.938947 2025] [security2:error] [pid 24566:tid 24571] [client 65.111.27.10:58411] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adambarnard.com"] [uri "/.env"] [unique_id "aTJVENYi_dj3HxJDlx4y0AAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack