๐จ๐ญ
backslash
2026-07-07 15:06:07
(17 hours ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ธ
oncord
2026-06-23 17:34:36
(2 weeks ago)
Form spam
Web Spam
๐ซ๐ฎ
JimArchon72
2026-06-06 07:05:03
(1 month ago)
2026/06/06 07:01:27 "GET /wp-login.php?action=register HTTP/1.1"
Web App Attack
๐ฉ๐ช
Lino Project
2026-05-09 03:22:54
(1 month ago)
65.111.5.43 - - [09/May/2026:05:22:53 +0200] "GET /wp-admin/post-new.php HTTP/1.1" 403 6488 "https:/ ...
show more
65.111.5.43 - - [09/May/2026:05:22:53 +0200] "GET /wp-admin/post-new.php HTTP/1.1" 403 6488 "https://www.primobio.it/mio-account/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-14 23:39:38
(2 months ago)
Automated bot traffic โ residential proxy, fake browser fingerprint. UA="Mozilla/5.0 (X11; Ubuntu; L ...
show more
Automated bot traffic โ residential proxy, fake browser fingerprint. UA="Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0"
show less
Bad Web Bot
Web App Attack
Anonymous
2025-12-04 07:54:48
(7 months ago)
botnet
DDoS Attack
๐บ๐ธ
TPI-Abuse
2025-12-03 10:07:26
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 05:07:20.761169 2025] [security2:error] [pid 16204:tid 16204] [client 65.111.5.43:18595] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "smokeyspb.photos"] [uri "/.env"] [unique_id "aTAL2PSFT6BUKHMXwGjhUQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 11:04:12
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:04:09.754307 2025] [security2:error] [pid 14288:tid 14288] [client 65.111.5.43:54123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.studioarmanni.com"] [uri "/.git/HEAD"] [unique_id "aSbeqbejSNrazNA7izy5nQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 07:06:11
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:06:06.697857 2025] [security2:error] [pid 15067:tid 15067] [client 65.111.5.43:52943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.russellsfotos.com"] [uri "/.env"] [unique_id "aSam3jGS8s4Ob6GeVlluRAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
MM-bot
2025-11-26 06:36:57
(7 months ago)
URL-probe: HTTP/1.1 GET request on /.env (2025-11-26 07:36:57 UTC+1)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 02:08:01
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:07:59.021431 2025] [security2:error] [pid 21678:tid 21678] [client 65.111.5.43:33753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bostonlog.com"] [uri "/.svn/wc.db"] [unique_id "aSZg_6X9fJlb7jLLzP9R0wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 01:06:33
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:06:25.397988 2025] [security2:error] [pid 6356:tid 6356] [client 65.111.5.43:59029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.styxwetworld.com"] [uri "/.git/HEAD"] [unique_id "aSZSkRW7O35DbM_xm8_A4QAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 00:11:15
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:11:10.334224 2025] [security2:error] [pid 25420:tid 25420] [client 65.111.5.43:52491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eboredom.net"] [uri "/.svn/wc.db"] [unique_id "aSZFnllPY3RVOzYtKawKPgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 09:31:13
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:31:05.563758 2025] [security2:error] [pid 3797430:tid 3797430] [client 65.111.5.43:20003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.radiantmessages.com"] [uri "/.svn/wc.db"] [unique_id "aSQl2Q5BCflzXH9RKYVCXgAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 08:38:57
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.5.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:38:08.321598 2025] [security2:error] [pid 7032:tid 7032] [client 65.111.5.43:44965] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.frank-klimas.com"] [uri "/.git/HEAD"] [unique_id "aSQZcH-4ikkZC7g53drqIgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack