๐ฉ๐ช
ghostwarriors
2026-07-03 01:21:22
(13 hours ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2026-06-30 05:14:21
(3 days ago)
8 attacks on ACME URLs, Alfa URLs:
GET /.well-known/acme-challenge/admin.php HTTP/1.1
GET /wp-includ ...
show more
8 attacks on ACME URLs, Alfa URLs:
GET /.well-known/acme-challenge/admin.php HTTP/1.1
GET /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1
show less
Web App Attack
Hacking
Anonymous
2026-06-30 05:02:38
(3 days ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: JP, Attack patterns: Word ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: JP, Attack patterns: WordPress scanning, Webshell probing
show less
Bad Web Bot
Web App Attack
๐ง๐ช
taivas.nl
2026-06-30 04:32:56
(3 days ago)
Many_bad_calls
Web App Attack
Anonymous
2026-06-29 13:04:55
(4 days ago)
(caddyscan) Scanner path probe from 20.78.169.229 (JP/Japan/-): 5 in the last 3600 secs; Ports: *; D ...
show more
(caddyscan) Scanner path probe from 20.78.169.229 (JP/Japan/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 20.78.169.229 - - [29/Jun/2026:13:04:28 +0000] "GET /xmlrpc.php HTTP/1.1"
[REDACTED] 200 2627 20.78.169.229 - - [29/Jun/2026:13:04:44 +0000] "GET /wp-config.php HTTP/1.1"
[REDACTED] 200 2627 20.78.169.229 - - [29/Jun/2026:13:04:46 +0000] "GET /wp-admin/js/autoload_classmap.php HTTP/1.1"
[REDACTED] 200 2627 20.78.169.229 - - [29/Jun/2026:13:04:51 +0000] "GET /wp-admin/css/colors/blue/admin.php HTTP/1.1"
[REDACTED] 200 2627 20.78.169.229 - - [29/Jun/2026:13:04:54 +0000] "GET /wp-admin/user/index.php HTTP/1.1"
show less
Port Scan
๐ฉ๐ช
raph
2026-06-29 12:43:33
(4 days ago)
[Wordpress] crawler /wp-admin/*, /wp-content/*, etc.
Bad Web Bot
Web App Attack
Anonymous
2026-06-29 12:27:50
(4 days ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 11:49:57
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 20.78.169.229 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 20.78.169.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 07:49:50.451130 2026] [security2:error] [pid 26927:tid 26927] [client 20.78.169.229:4250] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ecodesarrollourbano.com"] [uri "/wp-config.php"] [unique_id "akJb3oBFYS8L_jUE4geWEAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
stypr
2026-06-29 11:49:47
(4 days ago)
Malicious activity detected on HTTP/HTTPS
Hacking
Brute-Force
Web App Attack
๐ฉ๐ช
ardexter
2026-06-29 11:41:09
(4 days ago)
Wordpress attack and DDOS
DDoS Attack
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-29 11:10:59
(4 days ago)
20.78.169.229 - - [29/Jun/2026:14:10:58 +0300] "GET /wp-admin/user/wp-login.php HTTP/1.1" 404 4666 " ...
show more
20.78.169.229 - - [29/Jun/2026:14:10:58 +0300] "GET /wp-admin/user/wp-login.php HTTP/1.1" 404 4666 "-" "-"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 10:50:35
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 20.78.169.229 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 20.78.169.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 06:50:29.590040 2026] [security2:error] [pid 32474:tid 32549] [client 20.78.169.229:21789] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madtruckerbill.com"] [uri "/wp-config.php"] [unique_id "akJN9SGXwa5Xc8A7TmuiPAAAAI8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-29 10:45:43
(4 days ago)
Banned by Fail2Ban on server
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 10:15:07
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 20.78.169.229 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 20.78.169.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 06:15:01.094101 2026] [security2:error] [pid 25030:tid 25030] [client 20.78.169.229:29996] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mrepoch.art"] [uri "/wp-config.php"] [unique_id "akJFpTPgb6UKqFCQ-p5KPwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-29 10:10:33
(4 days ago)
20.78.169.229 - - [29/Jun/2026:13:10:18 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ...
show more
20.78.169.229 - - [29/Jun/2026:13:10:18 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 4665 "-" "-"
20.78.169.229 - - [29/Jun/2026:13:10:32 +0300] "GET /wp-includes/about.php HTTP/1.1" 404 650 "-" "-"
...
show less
Web App Attack