๐ณ๐ฑ
ConsulHosting
2026-06-29 20:08:38
(2 days ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-29 02:38:20
(3 days ago)
Excessive multi-domain requests
Brute-Force
๐ฌ๐ง
consul.to
2026-06-29 01:10:09
(3 days ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 17:25:07
(3 days ago)
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 13:24:59.849215 2026] [security2:error] [pid 21973:tid 21973] [client 193.176.211.215:59181] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||asiancommoditiescorporation.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "asiancommoditiescorporation.com"] [uri "/images/stories/themes.php"] [unique_id "akFY64QeQjhsBWXt7PrP9QAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-28 07:05:41
(4 days ago)
Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-201)
Hacking
๐ซ๐ท
dynamix
2026-06-28 04:56:33
(4 days ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 03:38:53
(4 days ago)
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 23:38:48.209566 2026] [security2:error] [pid 31876:tid 31876] [client 193.176.211.215:20715] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||graymatterofdc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "graymatterofdc.com"] [uri "/images/stories/themes.php"] [unique_id "akCXSA-Q3IOun1eyNOu6zwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 01:47:17
(4 days ago)
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 21:47:12.728387 2026] [security2:error] [pid 18956:tid 18956] [client 193.176.211.215:36721] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||thegreatleapforward.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "thegreatleapforward.com"] [uri "/images/stories/themes.php"] [unique_id "akB9IN_pnNBc2Z7RgLF5iQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-27 23:52:26
(4 days ago)
[da.kdns.gr] httpd-suspicious-path: sites=aravantinos.gr; logs=/var/log/httpd/domains/aravantinos.gr ...
show more
[da.kdns.gr] httpd-suspicious-path: sites=aravantinos.gr; logs=/var/log/httpd/domains/aravantinos.gr.log; samples=/wp-admin/css/adminfusm.php | /wp-content/click.php | /wp-includes/template-less.php
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 23:40:44
(5 days ago)
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 19:40:36.063702 2026] [security2:error] [pid 8946:tid 8946] [client 193.176.211.215:27949] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||cmexico.co|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "cmexico.co"] [uri "/images/stories/themes.php"] [unique_id "aj8N9MxYFk5LgA-LCZUAlwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-26 12:26:37
(5 days ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 10:23:37
(5 days ago)
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 06:23:32.863589 2026] [security2:error] [pid 10195:tid 10195] [client 193.176.211.215:44277] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||limoelpaso.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "limoelpaso.com"] [uri "/images/stories/themes.php"] [unique_id "aj5TJNswBV2Kk-_6Pj2X6AAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Octopuce
2026-06-26 08:03:11
(6 days ago)
Aggressive web search of vulnerable pages: /.well-known/acme-challenge/install.php /.well-known/acme ...
show more
Aggressive web search of vulnerable pages: /.well-known/acme-challenge/install.php /.well-known/acme-challenge/plugins.php /.well-known/acme-ch ...
show less
Web App Attack
๐ฌ๐ท
setupgr
2026-06-26 05:52:06
(6 days ago)
(mod_security) mod_security (id:1000001) triggered by 193.176.211.215 (HK/Hong Kong/-/-/-/[AS206092 ...
show more
(mod_security) mod_security (id:1000001) triggered by 193.176.211.215 (HK/Hong Kong/-/-/-/[AS206092 F.n.s. Holdings Limited]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 26 08:52:04.003333 2026] [security2:error] [pid 813395:tid 813445] [client 193.176.211.215:23541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/about.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "103"] [id "1000001"] [msg "Bad file blocked: /about.php"] [severity "CRITICAL"] [tag "security"] [hostname "adoro.gr"] [uri "/about.php"] [unique_id "aj4ThPqFoIcDeDARUGhPiwAAAMM"]
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-18 17:19:15
(1 week ago)
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240000) triggered by 193.176.211.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 13:19:09.862630 2026] [security2:error] [pid 32758:tid 32758] [client 193.176.211.215:52483] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||anniversaryprintednapkins.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "anniversaryprintednapkins.com"] [uri "/images/stories/themes.php"] [unique_id "ajQojcGcSG33sdLF6SX1lwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack