๐ฉ๐ช
LRob
2026-07-13 14:52:57
(1 day ago)
CrowdSec: crowdsecurity/http-wordpress_user-enum | req: /?author=2 | 6 distinct paths | UA: Mozilla/ ...
show more
CrowdSec: crowdsecurity/http-wordpress_user-enum | req: /?author=2 | 6 distinct paths | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0
show less
Web App Attack
Anonymous
2026-07-12 06:00:31
(3 days ago)
2026-07-11 21:00:02,821 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-07 ...
show more
2026-07-11 21:00:02,821 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-07-12 00:00:11,717 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-07-12 03:01:15,266 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-07-12 06:00:37,940 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-07-12 09:00:30,636 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
show less
Brute-Force
๐ซ๐ท
masterguru
2026-07-11 15:45:42
(3 days ago)
WordPress: User enumeration. Pattern match "(author\\\\= (88030-193)
Hacking
๐ฒ๐ฝ
octageeks.com
2026-06-27 04:16:49
(2 weeks ago)
Wordpress malicious attack:[octawpauthor]
Web App Attack
๐ฉ๐ช
4server
2026-06-26 07:43:46
(2 weeks ago)
[FriJun2609:43:43.2607692026][security2:error][pid2950636:tid2950694][client202.181.177.215:0]ModSec ...
show more
[FriJun2609:43:43.2607692026][security2:error][pid2950636:tid2950694][client202.181.177.215:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"www.simireinigung.ch\"][uri\"/xmlrpc.php\"][unique_id\"aj4tr-YiER6nDofXkF8txAAAAAE\"]\,referer:https://www.simireinigung.ch/xmlrpc.php
show less
Port Scan
Brute-Force
Web App Attack
๐ซ๐ฎ
YF
2026-06-23 23:00:28
(3 weeks ago)
WordPress content enumeration
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-18 22:30:03
(3 weeks ago)
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-17 22:29:23
(3 weeks ago)
Brute-Force
Web App Attack
๐ฉ๐ช
Admins@FBN
2026-06-17 16:59:53
(3 weeks ago)
Threat Host blocked...
Hacking
๐ฉ๐ช
LRob
2026-06-17 03:30:02
(4 weeks ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 02:28:47
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 202.181.177.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 202.181.177.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 22:28:43.010485 2026] [security2:error] [pid 6178:tid 6178] [client 202.181.177.215:33898] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brianchancemusic.com"] [uri "/.git/config"] [unique_id "ajC02_EWi2LoSe6KltEZUgAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-14 18:02:29
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 202.181.177.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 202.181.177.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 14:02:22.387027 2026] [security2:error] [pid 6820:tid 6820] [client 202.181.177.215:55076] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ssl-grp.com"] [uri "/.git/config"] [unique_id "ai7srlUJld7ZMd3qY3QujAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-13 19:06:20
(1 month ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ต๐พ
SecOpsSL
2026-06-06 16:03:18
(1 month ago)
202.181.177.215 - - [06/Jun/2026:13:03:13 -0300] "POST /wp-login.php HTTP/1.1" 200 3139 "https://ucm ...
show more
202.181.177.215 - - [06/Jun/2026:13:03:13 -0300] "POST /wp-login.php HTTP/1.1" 200 3139 "https://ucmb.edu.py/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 YaBrowser/24.4.0.0 Safari/537.36"
202.181.177.215 - - [06/Jun/2026:13:03:15 -0300] "POST /wp-login.php HTTP/1.1" 200 3139 "https://ucmb.edu.py/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 YaBrowser/24.4.0.0 Safari/537.36"
202.181.177.215 - - [06/Jun/2026:13:03:18 -0300] "POST /wp-login.php HTTP/1.1" 200 3139 "https://ucmb.edu.py/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 YaBrowser/24.4.0.0 Safari/537.36"
show less
Brute-Force
Web App Attack
Anonymous
2026-06-06 06:00:23
(1 month ago)
2026-06-05 21:01:07,935 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-06 ...
show more
2026-06-05 21:01:07,935 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-06-06 00:00:57,840 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-06-06 03:00:33,253 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-06-06 06:00:26,003 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
2026-06-06 09:00:23,163 fail2ban.actions [3625835]: NOTICE [tor] Ban 202.181.177.215
show less
Brute-Force