๐บ๐ธ
Mainpine
2026-07-10 09:13:31
(1 day ago)
probing for vulnerable web apps
Web App Attack
๐บ๐ธ
interbiznw.com
2026-05-16 03:11:40
(1 month ago)
wordpress-bruteforce
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
NicoID
2026-05-01 00:15:26
(2 months ago)
193.202.82.157 - - [30/Apr/2026:15:40:44 -0600] "GET /wp-login.php HTTP/1.1" 200 4883 "https://www.g ...
show more
193.202.82.157 - - [30/Apr/2026:15:40:44 -0600] "GET /wp-login.php HTTP/1.1" 200 4883 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
...
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-03-30 07:10:47
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.82.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.82.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 03:10:44.085599 2026] [security2:error] [pid 7140:tid 7140] [client 193.202.82.157:39983] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||iconconstructors.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "iconconstructors.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acoh9FjuGngzB9VvEv89-wAAAAY"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-26 22:38:08
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.82.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.82.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 18:38:01.856890 2026] [security2:error] [pid 15369:tid 15369] [client 193.202.82.157:41277] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mark.rawlings.name|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mark.rawlings.name"] [uri "/wp-json/wp/v2/users"] [unique_id "acW1SZV4XtoPdcp2bODptwAAAAo"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
kjaerulff
2026-03-24 14:05:29
(3 months ago)
Failed Wordpress login using wp-login.php
Web App Attack
๐จ๐ฟ
lp
2026-03-07 06:01:59
(4 months ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 193.202.82.157
2026-03-07T06:23:57+01 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 193.202.82.157
2026-03-07T06:23:57+01:00 vpn Access-Reject 'Rrklos' station: 193.202.82.157 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
๐จ๐ฟ
lp
2026-03-04 13:27:29
(4 months ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 193.202.82.157
2026-03-04T14:19:07+01 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 193.202.82.157
2026-03-04T14:19:07+01:00 vpn Access-Reject 'clowns' station: 193.202.82.157 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
๐จ๐ฆ
SSH-Admin
2026-02-07 17:12:28
(5 months ago)
Probing for Exploits
Exploited Host
Web App Attack
๐จ๐ฆ
SSH-Admin
2025-12-27 13:45:08
(6 months ago)
Probing for Exploits
Exploited Host
Web App Attack
๐ซ๐ท
LRob
2025-12-24 13:00:14
(6 months ago)
Repeated 403 errors, blocked by Fail2ban in custom-403 jail
Bad Web Bot
Anonymous
2025-10-31 06:33:23
(8 months ago)
2025-10-31T08:33:23.243477+02:00 zanati wp(www.sahpa.co.za)[409488]: Blocked authentication attempt ...
show more
2025-10-31T08:33:23.243477+02:00 zanati wp(www.sahpa.co.za)[409488]: Blocked authentication attempt for admin from 193.202.82.157
...
show less
Web App Attack
Anonymous
2025-10-22 16:12:10
(8 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2025-07-15 06:28:25
(11 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.82.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.82.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 02:28:21.757186 2025] [security2:error] [pid 28279:tid 28279] [client 193.202.82.157:53083] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||aeongames.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aeongames.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aHX1Bc0EAuhSrQDSC1wgpwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-02-17 21:27:23
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 193.202.82.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 193.202.82.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 17 16:27:18.370830 2025] [security2:error] [pid 32203:tid 32203] [client 193.202.82.157:39877] [client 193.202.82.157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cams.boens.org"] [uri "/.env"] [unique_id "Z7OptogVsfrerUy9em8AGwAAAAw"], referer: https://tasamm.com/about/ccc11.html
show less
Brute-Force
Bad Web Bot
Web App Attack