๐ฉ๐ช
ghostwarriors
2026-07-18 12:50:09
(9 hours ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-18 12:22:48
(9 hours ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
๐บ๐ธ
Matthew Ping
2026-07-18 11:15:02
(10 hours ago)
ModSecurity rule 949110 triggered on dedicated. Web application attack blocked by CSF/LFD.
Web App Attack
Hacking
Anonymous
2026-07-18 07:54:03
(14 hours ago)
SQL injection, multiple attempts.
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-18 02:40:17
(19 hours ago)
(mod_security) mod_security (id:210831) triggered by 150.129.10.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 150.129.10.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 22:40:12.661598 2026] [security2:error] [pid 3732:tid 3732] [client 150.129.10.50:52414] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.weddingcocktailnapkins.com|F|4"] [data "panscient.com"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.weddingcocktailnapkins.com"] [uri "/"] [unique_id "alrnjIDZlqADKpSBv3vcygAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-17 15:44:50
(1 day ago)
150.129.10.50 - - [17/Jul/2026:17:44:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Mozilla/5.0 ...
show more
150.129.10.50 - - [17/Jul/2026:17:44:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Mozilla/5.0 (Linux; Android 13; Pixel 7a) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
150.129.10.50 - - [17/Jul/2026:17:44:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Mozilla/5.0 (Linux; Android 13; Pixel 7a) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
150.129.10.50 - - [17/Jul/2026:17:44:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Mozilla/5.0 (Linux; Android 13; Pixel 7a) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
show less
Hacking
Web App Attack
๐จ๐ญ
backslash
2026-07-16 19:57:00
(2 days ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-16 08:46:00
(2 days ago)
(mod_security) mod_security (id:210831) triggered by 150.129.10.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 150.129.10.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 04:45:55.480339 2026] [security2:error] [pid 31591:tid 31691] [client 150.129.10.50:48452] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.geekshop.com|F|4"] [data "panscient.com"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.geekshop.com"] [uri "/robots.txt"] [unique_id "aliaQwiifOWYJSiYV2wAMwAAAQ0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-16 05:21:52
(2 days ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ฌ๐ง
oncord
2026-07-16 02:42:06
(2 days ago)
Form spam
Web Spam
๐ฉ๐ช
LRob
2026-07-14 13:16:26
(4 days ago)
CrowdSec: crowdsecurity/http-bad-user-agent | req: /wp-content/themes/wicon/tarteaucitron/tarteaucit ...
show more
CrowdSec: crowdsecurity/http-bad-user-agent | req: /wp-content/themes/wicon/tarteaucitron/tarteaucitron.js | 2 distinct paths | UA: \x22Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36\x22
show less
Bad Web Bot
๐ณ๐ฑ
WeCloudit-Anti-Abuse
2026-07-13 18:54:06
(5 days ago)
HTTP flood against /retreat-corp on Apache webserver
Brute-Force
๐ซ๐ฎ
YF
2026-07-12 12:00:34
(6 days ago)
WordPress author enumeration
Web App Attack
Anonymous
2026-07-11 04:00:11
(1 week ago)
2026-07-10 19:01:01,200 fail2ban.actions [3625835]: NOTICE [tor] Ban 150.129.10.50
2026-07-1 ...
show more
2026-07-10 19:01:01,200 fail2ban.actions [3625835]: NOTICE [tor] Ban 150.129.10.50
2026-07-10 22:00:40,744 fail2ban.actions [3625835]: NOTICE [tor] Ban 150.129.10.50
2026-07-11 01:00:16,795 fail2ban.actions [3625835]: NOTICE [tor] Ban 150.129.10.50
2026-07-11 04:00:09,598 fail2ban.actions [3625835]: NOTICE [tor] Ban 150.129.10.50
2026-07-11 07:00:10,393 fail2ban.actions [3625835]: NOTICE [tor] Ban 150.129.10.50
show less
Brute-Force