๐ซ๐ท
Octopuce
2026-07-16 04:06:57
(1 day ago)
Aggressive web search of vulnerable pages: /assets/script.js.php /wp-admin/css/colors/sunrise/colors ...
show more
Aggressive web search of vulnerable pages: /assets/script.js.php /wp-admin/css/colors/sunrise/colors_95.php /wp-includes/block-patterns/autoloa ...
show less
Web App Attack
๐ฌ๐ท
setupgr
2026-07-15 12:08:18
(2 days ago)
(mod_security) mod_security (id:1000001) triggered by 203.159.81.81 (IL/Israel/Tel Aviv/Tel Aviv/-/[ ...
show more
(mod_security) mod_security (id:1000001) triggered by 203.159.81.81 (IL/Israel/Tel Aviv/Tel Aviv/-/[AS206092 SECFIREWALLAS]): 1 in the last 86400 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Wed Jul 15 15:08:13.894249 2026] [security2:error] [pid 87228:tid 87359] [client 203.159.81.81:31061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/db.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "103"] [id "1000001"] [msg "Bad file blocked: /wp-content/plugins/seoplugins/db.php"] [severity "CRITICAL"] [tag "security"] [hostname "ions.gr"] [uri "/wp-content/plugins/seoplugins/db.php"] [unique_id "ald4LX7VoH4kzJJ1ftp_FgAABNc"]
show less
Port Scan
๐ซ๐ท
dynamix
2026-07-08 02:32:31
(1 week ago)
Multiple WAF Violations
Web App Attack
๐ฎ๐ฑ
Dolphi
2026-07-07 12:50:06
(1 week ago)
Excessive POST /wp-login.php requests
Brute-Force
Web App Attack
๐ฎ๐ฑ
Dolphi
2026-07-07 09:51:18
(1 week ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
๐ซ๐ท
conseilgouz
2026-06-28 18:32:20
(2 weeks ago)
loe-7 : Trying access unauthorized files/dir=>//wp-content/themes/default/index.php
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-22 22:42:28
(3 weeks ago)
(mod_security) mod_security (id:240000) triggered by 203.159.81.81 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240000) triggered by 203.159.81.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 18:42:22.750436 2026] [security2:error] [pid 30180:tid 30180] [client 203.159.81.81:26561] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||mthompson-business-services.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "mthompson-business-services.com"] [uri "/images/stories/themes.php"] [unique_id "ajm6Tgru4HEuVFhMoSPjVgAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-06-22 20:36:22
(3 weeks ago)
Web attack/malicious scanning detected
Web App Attack
๐ณ๐ฑ
TCATERDSBE
2026-06-15 09:56:00
(1 month ago)
SQL Injection
SQL Injection
๐ซ๐ท
dynamix
2026-02-23 13:34:35
(4 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
myagent.site
2026-02-23 11:36:07
(4 months ago)
Blocking for trying to access an exploit file: /manager.php
Hacking
๐บ๐ธ
TPI-Abuse
2026-02-22 16:53:21
(4 months ago)
(mod_security) mod_security (id:240000) triggered by 203.159.81.81 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240000) triggered by 203.159.81.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 11:52:42.753997 2026] [security2:error] [pid 29260:tid 29260] [client 203.159.81.81:39995] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||lendren.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "lendren.com"] [uri "/images/stories/themes.php"] [unique_id "aZs0WqjVwA0SpfkBU9aqxgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-02-22 11:18:59
(4 months ago)
203.159.81.81 - - [22/Feb/2026:13:18:58 +0200] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 40 ...
show more
203.159.81.81 - - [22/Feb/2026:13:18:58 +0200] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 404 282 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0"
203.159.81.81 - - [22/Feb/2026:13:18:58 +0200] "GET /wp-admin/css/colors/midnight/admin.php HTTP/1.1" 404 282 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36"
...
show less
Web App Attack
๐ฉ๐ช
kjaerulff
2026-01-26 20:59:27
(5 months ago)
Failed Wordpress login using wp-login.php
Web App Attack
๐บ๐ธ
myagent.site
2026-01-26 18:49:59
(5 months ago)
Blocked authentication attempt for banned user: admin
Hacking