๐ฆ๐น
neo72
2026-07-13 09:53:34
(15 hours ago)
Detected malicious activity - bulk block
Brute-Force
Web App Attack
๐บ๐ธ
lostswordfish.com
2026-07-10 09:02:04
(3 days ago)
Wordfence waf block on lostswordfish
Web App Attack
๐ฉ๐ช
4server
2026-07-08 21:42:11
(5 days ago)
[WedJul0823:42:10.0049472026][security2:error][pid3269264:tid3269376][client65.111.28.212:0]ModSecur ...
show more
[WedJul0823:42:10.0049472026][security2:error][pid3269264:tid3269376][client65.111.28.212:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"special-home.ch\"][uri\"/xmlrpc.php\"][unique_id\"ak7EMglXD6l0SmngxAT2hAAAANA\"]\,referer:https://www.bing.com/
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
2026-06-20 16:47:46
(3 weeks ago)
WordPress Brute Force
Brute-Force
๐ฒ๐ฝ
octageeks.com
2026-06-20 04:13:20
(3 weeks ago)
Wordpress malicious attack:[octaflood]
Web App Attack
Anonymous
2026-06-20 02:27:05
(3 weeks ago)
[da.kdns.gr] httpd-login-spray-site: sites=vougioukas-texniki.gr; logs=/var/log/httpd/domains/vougio ...
show more
[da.kdns.gr] httpd-login-spray-site: sites=vougioukas-texniki.gr; logs=/var/log/httpd/domains/vougioukas-texniki.gr.log; samples=site_wide=true | distinct_ips=17 | /wp-login.php
show less
Hacking
Web App Attack
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:01:24
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐บ๐ธ
TPI-Abuse
2025-11-26 08:13:59
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:13:50.619174 2025] [security2:error] [pid 25914:tid 25914] [client 65.111.28.212:12549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.judithchallender.com"] [uri "/.env"] [unique_id "aSa2vufJDbfC5_0uUnGAPgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 06:17:38
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:17:33.537109 2025] [security2:error] [pid 6147:tid 6147] [client 65.111.28.212:54517] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ezekielproductions.com"] [uri "/.git/HEAD"] [unique_id "aSabfQPIA2zb_8_h64DeCgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 05:56:57
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:56:53.653838 2025] [security2:error] [pid 30751:tid 30751] [client 65.111.28.212:54443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.stefchild.com"] [uri "/.git/HEAD"] [unique_id "aSaWpb1md8-tTiX2Mpk5NQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 02:11:22
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:11:17.611710 2025] [security2:error] [pid 7456:tid 7456] [client 65.111.28.212:56473] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.alecmcatee.com"] [uri "/.env"] [unique_id "aSZhxa3YqS52_yUhujMBuwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 00:57:47
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:57:39.585529 2025] [security2:error] [pid 14642:tid 14642] [client 65.111.28.212:30257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kenometer.recollected.net"] [uri "/.env"] [unique_id "aSZQgzrPXV49Gc_XAHcz0gAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2025-11-25 01:26:57
(7 months ago)
Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ...
show more
Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing.
show less
Web App Attack
๐ซ๐ท
Sklurk
2025-11-24 13:17:24
(7 months ago)
Web App Attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 05:36:32
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.28.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:36:26.212798 2025] [security2:error] [pid 20405:tid 20405] [client 65.111.28.212:32845] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agrollum.com"] [uri "/.git/HEAD"] [unique_id "aSPu2sgUPIqEaANq6kdmVgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack