Anonymous
2026-07-13 13:29:51
(3 days ago)
(caddyscan) Scanner path probe from 193.202.9.48 (US/United States/-): 5 in the last 3600 secs; Port ...
show more
(caddyscan) Scanner path probe from 193.202.9.48 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 193.202.9.48 - - [13/Jul/2026:13:29:45 +0000] "POST /xmlrpc.php HTTP/1.1"
[REDACTED] 200 2627 193.202.9.48 - - [13/Jul/2026:13:29:46 +0000] "GET /wp-login.php HTTP/1.1"
[REDACTED] 200 2627 193.202.9.48 - - [13/Jul/2026:13:29:47 +0000] "GET /wp-login.php HTTP/1.1"
[REDACTED] 200 2627 193.202.9.48 - - [13/Jul/2026:13:29:50 +0000] "POST /xmlrpc.php HTTP/1.1"
[REDACTED] 200 2627 193.202.9.48 - - [13/Jul/2026:13:29:50 +0000] "GET /wp-login.php HTTP/1.1"
show less
Port Scan
๐ซ๐ท
Tilellit.PRO
2026-07-05 04:46:49
(1 week ago)
WP Armour Plugin detection
Web Spam
Brute-Force
๐ซ๐ท
Tilellit.PRO
2026-07-02 05:16:26
(2 weeks ago)
tilellit/wp-armour-ban
Hacking
๐ซ๐ท
Tilellit.PRO
2026-06-28 09:16:50
(2 weeks ago)
Fail2Ban banned 193.202.9.48 for security violations in jail wp-armour. Log: 2026/06/28 09:16:50 [er ...
show more
Fail2Ban banned 193.202.9.48 for security violations in jail wp-armour. Log: 2026/06/28 09:16:50 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 193.202.9.48 | Target: wplogin" , client: 193.202.9.48, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐ซ๐ท
Tilellit.PRO
2026-06-27 16:17:43
(2 weeks ago)
Fail2Ban banned 193.202.9.48 for security violations in jail wp-armour. Log: 2026/06/27 16:17:42 [er ...
show more
Fail2Ban banned 193.202.9.48 for security violations in jail wp-armour. Log: 2026/06/27 16:17:42 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 193.202.9.48 | Target: wplogin" , client: 193.202.9.48, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐ฎ๐ณ
dineshskt4all
2026-04-04 19:25:10
(3 months ago)
193.202.9.48 - - [04/Apr/2026:19:25:05 +0000] "GET /wp-login.php HTTP/1.0" 200 3615 "-" "curl/8.6.0" ...
show more
193.202.9.48 - - [04/Apr/2026:19:25:05 +0000] "GET /wp-login.php HTTP/1.0" 200 3615 "-" "curl/8.6.0"
...
show less
IoT Targeted
๐บ๐ธ
TPI-Abuse
2026-01-23 03:14:55
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.9.48 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.9.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 22:14:49.338792 2026] [security2:error] [pid 7422:tid 7422] [client 193.202.9.48:13157] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||greensandbeans.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "greensandbeans.us"] [uri "/wp-json/wp/v2/users"] [unique_id "aXLnqeqqKD_daY4UvjFJXQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-23 02:47:55
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.9.48 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.9.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 21:47:50.317517 2026] [security2:error] [pid 26340:tid 26340] [client 193.202.9.48:26125] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||puckerbuttbikinis.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "puckerbuttbikinis.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXLhVraSEuo609ML4DITBQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-22 16:35:49
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.9.48 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.9.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 11:35:43.981202 2026] [security2:error] [pid 30848:tid 30848] [client 193.202.9.48:47563] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bradleybarefoot.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bradleybarefoot.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXJR33inDJct8bpibC9nAAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-22 11:24:53
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.9.48 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.9.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 06:24:48.731793 2026] [security2:error] [pid 16813:tid 16813] [client 193.202.9.48:63871] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||batfry.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "batfry.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXIJAKO7HVmaV8puEwPAcAAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-01-21 09:06:12
(5 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:02:19
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐ฉ๐ช
SCHAPPY
2023-07-26 20:02:33
(2 years ago)
IP was involved in L7 DDoS attack.
DDoS Attack