๐ช๐ธ
librebit
2026-06-29 18:07:34
(1 day ago)
Brute force
Brute-Force
Anonymous
2026-06-25 12:14:14
(5 days ago)
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ...
show more
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-skip.asp
show less
Exploited Host
Bad Web Bot
๐ฉ๐ช
Oakley
2026-05-20 10:52:25
(1 month ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐บ๐ธ
kosada.com
2026-05-18 11:10:51
(1 month ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐ฆ๐บ
screwlooseit.com.au
2026-05-12 10:26:23
(1 month ago)
Blocked by CSF 13 firewall - Rule: WPLOGIN
FR/France/47.77.44.185.baremetal.zare.com
Web App Attack
๐บ๐ธ
nyt
2026-05-11 11:24:34
(1 month ago)
POST to login page returned 404 status, 404 flood (16/60s), 404 flood (17/60s)
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-05-01 05:55:40
(1 month ago)
(wordpress) Failed wordpress login from 185.44.77.47 (GB/United Kingdom/47.77.44.185.baremetal.zare. ...
show more
(wordpress) Failed wordpress login from 185.44.77.47 (GB/United Kingdom/47.77.44.185.baremetal.zare.com)
show less
Brute-Force
๐ฉ๐ช
Nerdscave Hosting
2026-04-25 19:52:34
(2 months ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2026-04-15 01:07:26
(2 months ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
EGP Abuse Dept
2026-04-08 00:57:40
(2 months ago)
Scanning for web/db/file exploits on roboflex.nl
SQL Injection
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 00:55:17
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 185.44.77.47 (47.77.44.185.baremetal.zare.com): ...
show more
(mod_security) mod_security (id:240000) triggered by 185.44.77.47 (47.77.44.185.baremetal.zare.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 20:55:13.005487 2026] [security2:error] [pid 1857955:tid 1858032] [client 185.44.77.47:42804] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||indigowampum.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "indigowampum.com"] [uri "/images/stories/themes.php"] [unique_id "adWncYUyjLpvR9_8Zc_ffgAAAgQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 15:05:20
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 185.44.77.47 (47.77.44.185.baremetal.zare.com): ...
show more
(mod_security) mod_security (id:240000) triggered by 185.44.77.47 (47.77.44.185.baremetal.zare.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 11:05:15.081513 2026] [security2:error] [pid 1607774:tid 1607774] [client 185.44.77.47:57172] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||newlife.org.au|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "newlife.org.au"] [uri "/images/stories/themes.php"] [unique_id "adUdK9JiPBlZiNzzfwJl8QAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-04-07 13:26:52
(2 months ago)
Excessive 404/403 errors
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-04-07 10:04:03
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 185.44.77.47 (47.77.44.185.baremetal.zare.com): ...
show more
(mod_security) mod_security (id:240000) triggered by 185.44.77.47 (47.77.44.185.baremetal.zare.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 06:03:59.704962 2026] [security2:error] [pid 946580:tid 946580] [client 185.44.77.47:51400] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||senji.me|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "senji.me"] [uri "/images/stories/themes.php"] [unique_id "adTWjzNUth2OdYrRqzkEDQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 02:21:52
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 185.44.77.47 (47.77.44.185.baremetal.zare.com): ...
show more
(mod_security) mod_security (id:240000) triggered by 185.44.77.47 (47.77.44.185.baremetal.zare.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 22:21:46.350146 2026] [security2:error] [pid 27655:tid 27655] [client 185.44.77.47:53852] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||acworthga.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "acworthga.us"] [uri "/images/stories/themes.php"] [unique_id "adMYuo2Qp7Rn2AKOUMH1iwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack