๐ฉ๐ช
SCHAPPY
2026-07-11 15:37:39
(1 day ago)
Wordpress attack: Submitted data to wp-login.php prior getting page content, attempt blocked. POST c ...
show more
Wordpress attack: Submitted data to wp-login.php prior getting page content, attempt blocked. POST counter 1 is greater than GET counter 0, captcha counter for /wp-login.php by 65.111.28.111.
show less
Web Spam
๐บ๐ธ
lostswordfish.com
2026-07-11 04:26:04
(1 day ago)
Wordfence waf block on pameganslaw
Web App Attack
๐บ๐ธ
xmission.com
2026-05-25 17:06:36
(1 month ago)
65.111.28.111 - - [25/May/2026:11:06:36 -0600] "GET //xmlrpc.php?rsd HTTP/1.1" 200 780 "-" "Mozilla/ ...
show more
65.111.28.111 - - [25/May/2026:11:06:36 -0600] "GET //xmlrpc.php?rsd HTTP/1.1" 200 780 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36"
...
show less
Web App Attack
๐ฎ๐น
[email protected]
2026-04-17 22:29:46
(2 months ago)
[Sat Apr 18 00:29:46.002943 2026] [authz_core:error] [pid 560720:tid 560779] [remote 65.111.28.111:3 ...
show more
[Sat Apr 18 00:29:46.002943 2026] [authz_core:error] [pid 560720:tid 560779] [remote 65.111.28.111:34733] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-09 18:54:17
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 13:54:13.274666 2025] [security2:error] [pid 2587:tid 2600] [client 65.111.28.111:54969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ennerdalebridge.com"] [uri "/.git/HEAD"] [unique_id "aThwVVAjUFqn7N65zQYRowAAAUU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 20:26:12
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 15:26:04.844067 2025] [security2:error] [pid 581:tid 581] [client 65.111.28.111:9659] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "satanisdead.com"] [uri "/.svn/wc.db"] [unique_id "aTXi3Htj9Nu-qjbgCC07-QAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 15:26:11
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:26:04.559528 2025] [security2:error] [pid 19008:tid 19008] [client 65.111.28.111:29551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "towlefarmcommunity.org"] [uri "/.env"] [unique_id "aTWcjCyWviErlhEH7K1wlAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-07 12:51:59
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:51:54.446895 2025] [security2:error] [pid 26327:tid 26327] [client 65.111.28.111:14709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "demircan.org"] [uri "/.env"] [unique_id "aTV4alWxRrFIs1xFXwTLWgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-06 11:40:31
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:40:24.586732 2025] [security2:error] [pid 23637:tid 23637] [client 65.111.28.111:37435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "girardonline.net"] [uri "/.git/HEAD"] [unique_id "aTQWKKpGltPD8WQIIMJshQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-05 14:38:39
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 09:38:33.707736 2025] [security2:error] [pid 28399:tid 28399] [client 65.111.28.111:32287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bluedogzero.com"] [uri "/.env"] [unique_id "aTLuaQcjb6WH4JDg0ZyLOwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-01-23 15:21:44
(1 year ago)
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.01.23 is noted in report tim ...
show more
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.01.23 is noted in report timestamp
show less
Hacking
Brute-Force
๐จ๐ฆ
Julio Covolato
2024-08-19 21:45:01
(1 year ago)
Imap or Submission login brute-force attacks.
Brute-Force
Anonymous
2024-07-08 04:00:50
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH