๐ธ๐ฎ
borisperc
2025-08-03 10:32:27
(11 months ago)
Web Spam
Port Scan
Hacking
SQL Injection
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
Anonymous
2025-08-02 07:00:01
(11 months ago)
www.informatikaiallasok.com:80 193.108.130.21 - - [02/Aug/2025:08:52:33 +0200] "HEAD /backup.zip HTT ...
show more
www.informatikaiallasok.com:80 193.108.130.21 - - [02/Aug/2025:08:52:33 +0200] "HEAD /backup.zip HTTP/1.1" 302 195 "-" "-"
show less
Web App Attack
๐ฌ๐ง
[email protected]
2025-07-22 12:22:02
(11 months ago)
r2d2.e-learndesign.scot:80 193.108.130.21 - - [22/Jul/2025:12:22:01 +0000] "HEAD /old.zip HTTP/1.1" ...
show more
r2d2.e-learndesign.scot:80 193.108.130.21 - - [22/Jul/2025:12:22:01 +0000] "HEAD /old.zip HTTP/1.1" 404 205 "-" "-"
r2d2.e-learndesign.scot:80 193.108.130.21 - - [22/Jul/2025:12:22:01 +0000] "HEAD /public.zip HTTP/1.1" 404 205 "-" "-"
r2d2.e-learndesign.scot:80 193.108.130.21 - - [22/Jul/2025:12:22:01 +0000] "HEAD /wp.zip HTTP/1.1" 404 205 "-" "-"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-20 02:30:18
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 22:30:15.376486 2025] [security2:error] [pid 13526:tid 13526] [client 193.108.130.21:44714] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grabagame.com"] [uri "/wp-config.php_bak"] [unique_id "aHxUtwNAkBmz9eXxaQ4sRgAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2025-07-19 04:20:47
(11 months ago)
Detected attack by Imunify360
Brute-Force
Web App Attack
๐ฉ๐ช
DocNetzwerk
2025-07-19 01:46:45
(11 months ago)
(mod_security) mod_security triggered on hostname [redacted] 193.108.130.21 (US/United States/lu-sha ...
show more
(mod_security) mod_security triggered on hostname [redacted] 193.108.130.21 (US/United States/lu-shared01.dapanel.net)
show less
SQL Injection
๐บ๐ธ
TPI-Abuse
2025-07-18 21:53:18
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 17:53:12.133034 2025] [security2:error] [pid 13432:tid 13454] [client 193.108.130.21:38958] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tnccivic.org"] [uri "/wp-config.php_orig"] [unique_id "aHrCSFQDm_1kPy7TEYzQFwAAAFQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-18 10:34:35
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 06:34:30.060397 2025] [security2:error] [pid 30800:tid 30800] [client 193.108.130.21:58800] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fredlandia.com"] [uri "/wp-config.php1"] [unique_id "aHojNou7zVahZEB4_-rWmQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-15 01:23:30
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 14 21:23:24.013651 2025] [security2:error] [pid 28587:tid 28587] [client 193.108.130.21:42522] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vffv.com"] [uri "/wp-config.php.old"] [unique_id "aHWtjOrkjizTNli8ZWF9xwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-14 08:43:09
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 14 04:43:02.445411 2025] [security2:error] [pid 1432:tid 1432] [client 193.108.130.21:39854] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "johnrobinsonconsulting.com"] [uri "/wp-config.php1"] [unique_id "aHTDFkYqut6M75LruVSNAwAAACU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-14 03:49:15
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in ...
show more
(mod_security) mod_security (id:210492) triggered by 193.108.130.21 (lu-shared01.dapanel.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 13 23:49:10.447725 2025] [security2:error] [pid 20117:tid 20117] [client 193.108.130.21:60234] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starfateofficial.com"] [uri "/wp-config.php.old"] [unique_id "aHR-NntUuO38cP65-51O4AAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ฌ
Charles
2025-07-13 14:51:06
(11 months ago)
193.108.130.21 - - [13/Jul/2025:22:51:04 +0800] "GET /wp-config.php.old HTTP/1.1" 404 2066 "-" "-"
. ...
show more
193.108.130.21 - - [13/Jul/2025:22:51:04 +0800] "GET /wp-config.php.old HTTP/1.1" 404 2066 "-" "-"
...
show less
Web Spam
Email Spam
Brute-Force
Bad Web Bot
Web App Attack
SSH
๐ฎ๐น
VHosting
2025-07-13 13:00:07
(11 months ago)
Detected attack by Imunify360
Brute-Force
Web App Attack
๐ฎ๐น
VHosting
2025-07-13 04:55:51
(11 months ago)
Detected attack by Imunify360
Brute-Force
Web App Attack
๐บ๐ธ
hyena
2025-07-12 22:54:22
(11 months ago)
Repeated mod_security events.
Web App Attack