๐ฉ๐ช
LRob
2026-07-15 02:36:32
(1 day ago)
CrowdSec: crowdsecurity/http-wordpress-scan | req: /wp-content/themes/seotheme/db.php?u | 4 distinct ...
show more
CrowdSec: crowdsecurity/http-wordpress-scan | req: /wp-content/themes/seotheme/db.php?u | 4 distinct paths | UA: Go-http-client/2.0
show less
Web App Attack
๐ช๐ธ
masterguru
2026-07-15 02:00:19
(1 day ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122)
show less
Bad Web Bot
๐ซ๐ท
SpaceHost-Server
2026-07-12 22:27:38
(3 days ago)
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-11 22:27:21
(4 days ago)
Brute-Force
Web App Attack
๐ฉ๐ช
macrob
2026-07-11 05:34:45
(4 days ago)
2026/07/11 05:34:42 [error] 2702087#2702087: *367022721 access forbidden by rule, client: 178.239.19 ...
show more
2026/07/11 05:34:42 [error] 2702087#2702087: *367022721 access forbidden by rule, client: 178.239.198.203, server: binixo.lk, request: "GET /wp-content/plugins/fix/up.php HTTP/2.0", host: "binixo.lk", referrer: "http://binixo-lk.com/wp-content/plugins/fix/up.php"
2026/07/11 05:34:43 [error] 2702087#2702087: *367021935 access forbidden by rule, client: 178.239.198.203, server: binixo.lk, request: "GET /wp-content/plugins/fix/up.php HTTP/2.0", host: "binixo.lk", referrer: "http://binixo-lk.com/wp-content/plugins/fix/up.php"
2026/07/11 05:34:44 [error] 2702087#2702087: *367022456 access forbidden by rule, client: 178.239.198.203, server: binixo.lk, request: "GET /wp-content/plugins/fix/up.php HTTP/2.0", host: "binixo.lk", referrer: "http://binixo-lk.com/wp-content/plugins/fix/up.php"
...
show less
Web App Attack
๐ณ๐ฑ
ipoac.nl
2026-05-18 23:21:50
(1 month ago)
2026-05-19T01:21:48.957199+02:00 ipoac.nl wordpress(-)-: XML-RPC authentication failure for-from 178 ...
show more
2026-05-19T01:21:48.957199+02:00 ipoac.nl wordpress(-)-: XML-RPC authentication failure for-from 178.239.198.203
show less
Web App Attack
Anonymous
2026-05-18 18:08:26
(1 month ago)
Attac
Brute-Force
๐ซ๐ท
Octopuce
2026-04-28 07:07:20
(2 months ago)
Aggressive web search of vulnerable pages: /.well-known/acme-challenge/install.php /.well-known/acme ...
show more
Aggressive web search of vulnerable pages: /.well-known/acme-challenge/install.php /.well-known/acme-challenge/plugins.php /.well-known/acme-ch ...
show less
Web App Attack
๐ณ๐ฟ
Antinson
2026-04-21 21:18:27
(2 months ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐ซ๐ท
dynamix
2026-04-21 09:15:16
(2 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-04-21 08:45:57
(2 months ago)
178.239.198.203 - - [21/Apr/2026:11:45:55 +0300] "GET /wp-admin/wp-conflg.php HTTP/1.1" 404 708 "-" ...
show more
178.239.198.203 - - [21/Apr/2026:11:45:55 +0300] "GET /wp-admin/wp-conflg.php HTTP/1.1" 404 708 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
178.239.198.203 - - [21/Apr/2026:11:45:56 +0300] "GET /wp-admin/includes/about.php HTTP/1.1" 404 708 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-20 11:11:08
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 178.239.198.203 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 178.239.198.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 07:10:59.870837 2026] [security2:error] [pid 3175489:tid 3175489] [client 178.239.198.203:53255] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lasvegaskiss.com"] [uri "/.git/execute.php"] [unique_id "aeYJwxNMPDycz2SSInsdDwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-18 17:56:31
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 178.239.198.203 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240000) triggered by 178.239.198.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 13:46:20.631860 2026] [security2:error] [pid 1729489:tid 1729489] [client 178.239.198.203:25895] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||www.genescleaners.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.genescleaners.com"] [uri "/images/stories/themes.php"] [unique_id "aePDbKNrnZ07auU3s-KcMwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-04-18 13:55:37
(2 months ago)
Unauthorized access to webpage admin
Web App Attack
๐ซ๐ท
dynamix
2026-04-18 13:05:25
(2 months ago)
Multiple WAF Violations
Web App Attack