Anonymous
2026-07-18 10:51:41
(11 hours ago)
Banned by Fail2Ban on server
Web App Attack
๐บ๐ธ
mw
2026-07-18 00:20:16
(21 hours ago)
GET /wp-admin/css/index.php HTTP/1.1
Web App Attack
๐ฉ๐ช
IVski
2026-07-17 16:18:40
(1 day ago)
IVski WAF | WordPress scanner detected - probing wp-content, xmlrpc or wp-login
Port Scan
Brute-Force
Web App Attack
๐ฌ๐ง
Mendip_Defender
2026-07-15 06:51:31
(3 days ago)
185.192.69.36 - - [15/Jul/2026:07:51:19 +0100] "GET /000.php HTTP/1.1" 404 4125 "https://trailrides- ...
show more
185.192.69.36 - - [15/Jul/2026:07:51:19 +0100] "GET /000.php HTTP/1.1" 404 4125 "https://trailrides-wales.com/000.php" "Go-http-client/2.0"
185.192.69.36 - - [15/Jul/2026:07:51:19 +0100] "GET /wp-admin/css/index.php HTTP/1.1" 404 4954 "https://trailrides-wales.com/wp-admin/css/index.php" "Go-http-client/2.0"
185.192.69.36 - - [15/Jul/2026:07:51:20 +0100] "GET /wp-content/plugins/index.php HTTP/1.1" 404 4954 "https://trailrides-wales.com/wp-content/plugins/index.php" "Go-http-client/2.0"
...
show less
Hacking
Web App Attack
๐ซ๐ท
Octopuce
2026-05-12 01:05:01
(2 months ago)
Aggressive web search of vulnerable pages: /wp-includes/sodium_compat/lib/ /wp-includes/js/jcrop/ /w ...
show more
Aggressive web search of vulnerable pages: /wp-includes/sodium_compat/lib/ /wp-includes/js/jcrop/ /wp-content/uploads/2021/ /assets/js/ /wp-inc ...
show less
Web App Attack
๐ท๐บ
sms.ru
2026-05-09 23:49:55
(2 months ago)
/wp-admin/images/
Web App Attack
Anonymous
2026-05-09 20:06:39
(2 months ago)
host-ipset-guard auto-report; server=server.tmg.gr; rule=httpd-suspicious-path; count=11/6; duration ...
show more
host-ipset-guard auto-report; server=server.tmg.gr; rule=httpd-suspicious-path; count=11/6; duration=168h; scope=server.tmg.gr; country=US; sites=crm.tmg.gr; samples=/wp-content/plugins/updraftplus/includes/jstree/themes/config.php | /wp-content/plugins/ssss/src.php | /wp-content/plugins/maintenance.php
show less
Hacking
Web App Attack
๐ฎ๐ณ
Genhost
2026-05-08 21:43:26
(2 months ago)
SCANNING OF PHP SHELL FILES
Brute-Force
SSH
๐ฎ๐ณ
Genhost
2026-05-07 17:52:10
(2 months ago)
SCANNING OF PHP SHELL FILES
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-05-07 17:37:38
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 185.192.69.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 185.192.69.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 13:37:35.006090 2026] [security2:error] [pid 31458:tid 31458] [client 185.192.69.36:56701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.itbmsinc.com"] [uri "/wp-content/wp-config.php"] [unique_id "afzN31GXMGb5zfzcdzdhgAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-05-06 02:50:30
(2 months ago)
Excessive 404/403 errors
Brute-Force
๐ซ๐ท
Octopuce
2026-04-20 16:41:55
(2 months ago)
Aggressive web search of vulnerable pages: /wp-content/uploads/index.php /error.php /wp-content/plug ...
show more
Aggressive web search of vulnerable pages: /wp-content/uploads/index.php /error.php /wp-content/plugins/pwnd/admin-footer.php /wp-includes/widg ...
show less
Web App Attack
๐ณ๐ฑ
EGP Abuse Dept
2026-03-02 15:11:18
(4 months ago)
Scanning for web/db/file exploits on zutphen.jansenhorenenzien.nl
SQL Injection
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-03-02 13:07:57
(4 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-27 14:55:14
(4 months ago)
(mod_security) mod_security (id:240000) triggered by 185.192.69.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240000) triggered by 185.192.69.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 27 09:55:06.752818 2026] [security2:error] [pid 1017:tid 1017] [client 185.192.69.36:64331] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||militaryordnance.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "militaryordnance.com"] [uri "/images/stories/themes.php"] [unique_id "aaGwSnZeb5xYAPSmOWsj_gAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack