๐บ๐ธ
TPI-Abuse
2026-06-21 01:58:49
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 21:58:43.591240 2026] [security2:error] [pid 13520:tid 13543] [client 158.173.241.148:28725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dejacats.com"] [uri "/wp-config.php.bak"] [unique_id "ajdFU-EtdFP4lsNFRPTlawAAARU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 13:29:15
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 09:29:09.236698 2026] [security2:error] [pid 32359:tid 32359] [client 158.173.241.148:56375] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "controvac.com"] [uri "/wp-config.php.bak"] [unique_id "ajaVpS4qHhlp8NCcTcP8jwAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 10:04:06
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 06:03:59.737300 2026] [security2:error] [pid 8045:tid 8062] [client 158.173.241.148:50827] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cocoonprojects.com"] [uri "/wp-config.php.bak"] [unique_id "ajZlj8BWvhd4Q09Ux4B-1gAAAIk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 23:09:36
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 19:09:30.682445 2026] [security2:error] [pid 18811:tid 18811] [client 158.173.241.148:43327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chickiesbeef.com"] [uri "/wp-config.php.bak"] [unique_id "ajXMKkSF29rPBDhm4S4A2AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 11:20:44
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 07:20:37.530615 2026] [security2:error] [pid 4130:tid 4130] [client 158.173.241.148:47477] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||brbcar.com|F|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brbcar.com"] [uri "/wp-config.php.bak"] [unique_id "ajUmBUeSWkXF9uzjrIgGTAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-19 08:05:53
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐จ๐ฟ
ptlab
2026-06-10 06:45:54
(1 month ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
Anonymous
2026-06-10 04:54:23
(1 month ago)
Web App Attack
๐ฆ๐บ
MAGIC
2026-06-10 00:09:34
(1 month ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-05-26 09:01:48
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 158.173.241.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 05:01:43.595139 2026] [security2:error] [pid 7385:tid 7385] [client 158.173.241.148:51731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "williams-rodriguez.org"] [uri "/wp-config.php.bak"] [unique_id "ahVhd4g-DHitYoF_VGekAwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
spamblock
2026-05-23 19:18:44
(1 month ago)
Form submission marked as spam by user kp_5c0ee70aeaa549a688d216157c75b565 for form YZdmJRcoNelB
Port Scan
๐ฌ๐ง
consul.to
2026-05-20 19:33:40
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
oncord
2026-05-19 18:21:04
(1 month ago)
Form spam
Web Spam
๐ฌ๐ง
consul.to
2026-04-25 09:38:45
(2 months ago)
Web attack/malicious scanning detected
Web App Attack
๐ฌ๐ง
consul.to
2026-04-24 03:24:20
(2 months ago)
Web attack/malicious scanning detected
Web App Attack