Anonymous
2026-07-06 00:57:30
(4 hours ago)
Banned by Fail2Ban on server
Web App Attack
๐ณ๐ฑ
BlueWire Hosting
2026-07-05 06:09:53
(23 hours ago)
Probing websites for vulnerabilities
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-05 04:50:38
(1 day ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 03:04:04
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 193.37.32.25 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 193.37.32.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 23:04:00.331051 2026] [security2:error] [pid 22097:tid 22097] [client 193.37.32.25:20803] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oogeothermal.com"] [uri "/wp-content/wp-config.php"] [unique_id "aknJoBSHx_5MrkUVNFhmKQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Admin-Gito
2026-07-05 00:27:06
(1 day ago)
193.37.32.25 - - [05/Jul/2026:02:09:27 +0200] "GET /wp-includes/rest-api/config.php HTTP/1.1" 404 35 ...
show more
193.37.32.25 - - [05/Jul/2026:02:09:27 +0200] "GET /wp-includes/rest-api/config.php HTTP/1.1" 404 355373 "-" "Go-http-client/1.1"
193.37.32.25 - - [05/Jul/2026:02:09:38 +0200] "GET /wp-includes/rest-api/admin.php HTTP/1.1" 404 355334 "-" "Go-http-client/1.1"
193.37.32.25 - - [05/Jul/2026:02:09:43 +0200] "GET /wp-includes/Requests/Utility/config.php HTTP/1.1" 404 355343 "-" "Go-http-client/1.1"
193.37.32.25 - - [05/Jul/2026:02:09:45 +0200] "GET /wp-includes/Requests/config.php HTTP/1.1" 404 355335 "-" "Go-http-client/1.1"
193.37.32.25 - - [05/Jul/2026:02:09:47 +0200] "GET /wp-includes/widgets/config.php HTTP/1.1" 404 355334 "-" "Go-http-client/1.1"
193.37.32.25 - - [05/Jul/2026:02:09:52 +0200] "GET /wp-includes/js/wp-config.php HTTP/1.1" 404 355334 "-" "Go-http-client/1.1"
193.37.32.25 - - [05/Jul/2026:02:09:54 +0200] "GET /wp-includes/js/jcrop/admin.php HTTP/1.1" 404 355341 "-" "Go-http-client/1.1"
193.37.32.25 - - [05/Jul/2026:02:09:56 +0200] "GET /wp-includes/widgets/admin.php HTTP/1
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 20:49:09
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 193.37.32.25 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 193.37.32.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 16:49:05.422258 2026] [security2:error] [pid 23527:tid 23527] [client 193.37.32.25:42095] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mtshastaconcerts.com"] [uri "/wp-includes/js/wp-config.php"] [unique_id "aklxwVSEfn4Kt7lrJ7j4JAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-04 20:37:31
(1 day ago)
Banned by Fail2Ban on server
Web App Attack
๐ซ๐ท
masterguru
2026-07-04 14:18:20
(1 day ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195)
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-04 05:27:38
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 193.37.32.25 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 193.37.32.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 01:27:30.990984 2026] [security2:error] [pid 7924:tid 7924] [client 193.37.32.25:44327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "opticasprisma.com"] [uri "/wp-includes/js/wp-config.php"] [unique_id "akiZwsvihY5rPJoVjD9aJwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-04 04:19:04
(2 days ago)
Excessive multi-domain requests
Brute-Force
Anonymous
2026-07-04 01:55:56
(2 days ago)
[ns41.kdns.gr] httpd-suspicious-path: sites=www.example.com; logs=/var/log/httpd/access_log; samples ...
show more
[ns41.kdns.gr] httpd-suspicious-path: sites=www.example.com; logs=/var/log/httpd/access_log; samples=/wp-content/uploads/login.php | /wp-content/gk.php | /wp-content/themes/news-portal/admins-dir.php
show less
Hacking
Web App Attack
Anonymous
2026-07-04 00:11:07
(2 days ago)
193.37.32.25 - - [04/Jul/2026:02:11:02 +0200] "GET /wp-security.php HTTP/1.1" 403 12583 "-" "Go-http ...
show more
193.37.32.25 - - [04/Jul/2026:02:11:02 +0200] "GET /wp-security.php HTTP/1.1" 403 12583 "-" "Go-http-client/1.1"
193.37.32.25 - - [04/Jul/2026:02:11:02 +0200] "GET /wp-admin/includes/user/ HTTP/1.1" 403 12583 "-" "Go-http-client/1.1"
193.37.32.25 - - [04/Jul/2026:02:11:02 +0200] "GET /wp-content/ai1wm-backups/chosen.php HTTP/1.1" 403 12583 "-" "Go-http-client/1.1"
193.37.32.25 - - [04/Jul/2026:02:11:03 +0200] "GET /wp-admin/images/upgrade-temp-backup/ HTTP/1.1" 403 12583 "-" "Go-http-client/1.1"
193.37.32.25 - - [04/Jul/2026:02:11:03 +0200] "GET /wp-includes/blocks/code/jquery/ HTTP/1.1" 403 12583 "-" "Go-http-client/1.1"
193.37.32.25 - - [04/Jul/2026:02:11:03 +0200] "GET /wp-includes/css/dist/commands/wp-cron.php HTTP/1.1" 403 12583 "-" "Go-http-client/1.1"
193.37.32.25 - - [04/Jul/2026:02:11:03 +0200] "GET /wp-includes/certificates/chosen.php HTTP/1.1" 403 12583 "-" "Go-http-client/1.1"
193.37.32.25 - - [04/Jul/2026:02:11:04 +0200] "GET /wp-includes/IXR/customize/ HTTP/1.1" 403 12583
...
show less
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-03 23:40:32
(2 days ago)
674 requests with url.path *config.php
Brute-Force
Bad Web Bot
๐ณ๐ฑ
BlueWire Hosting
2026-07-03 14:19:06
(2 days ago)
Probing websites for vulnerabilities
Web App Attack
๐ซ๐ท
masterguru
2026-07-02 12:29:07
(3 days ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195)
show less
Bad Web Bot