๐ฉ๐ช
4server
2026-07-06 09:41:10
(1 day ago)
[MonJul0611:41:05.2969422026][security2:error][pid4038132:tid4038181][client209.50.180.102:0]ModSecu ...
show more
[MonJul0611:41:05.2969422026][security2:error][pid4038132:tid4038181][client209.50.180.102:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"agilityrossoblu.ch\"][uri\"/xmlrpc.php\"][unique_id\"akt4MR06qYTqTmzuAHcNrgAAAEM\"]\,referer:https://www.google.com/search\?q=wordpress
show less
Port Scan
Brute-Force
Web App Attack
๐ซ๐ท
ELYAZ
2026-06-30 06:55:50
(1 week ago)
(y4) Failed scan -byebye- from 209.50.180.102 (GB/United Kingdom/-): (CF_ENABLE)
Hacking
๐ฒ๐ฝ
octageeks.com
2026-06-30 04:23:24
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-06-29 04:12:24
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ซ๐ท
Sklurk
2026-06-20 03:21:54
(2 weeks ago)
Web App Attack
Web App Attack
๐บ๐ธ
mnsf
2026-05-28 22:05:48
(1 month ago)
Scanning/Probing (34)
Brute-Force
Web App Attack
๐ฉ๐ช
Spiderpiggy
2026-05-22 20:18:21
(1 month ago)
Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoi ...
show more
Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoint: /wp-login.php
show less
Brute-Force
Bad Web Bot
SSH
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐ฉ๐ช
F242
2026-01-30 06:09:22
(5 months ago)
Wordpress Login or XMLRPC abuse
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 06:01:44
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:01:36.539972 2025] [security2:error] [pid 22290:tid 22290] [client 209.50.180.102:21681] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.garantaconsulting.com"] [uri "/.git/HEAD"] [unique_id "aSVGQK4xGEG_l3oGvlzzLQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 03:11:22
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:11:15.581978 2025] [security2:error] [pid 29722:tid 29722] [client 209.50.180.102:49939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.inlinesoftware.net"] [uri "/.svn/wc.db"] [unique_id "aSUeU2atAZJ42xZkcaqBOQAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 02:53:38
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:53:32.044609 2025] [security2:error] [pid 20427:tid 20427] [client 209.50.180.102:40745] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.bcoutdoor.com"] [uri "/.env"] [unique_id "aSUaLAvrqqCvUiHxI7BXLwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 01:11:12
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:11:05.254205 2025] [security2:error] [pid 1651:tid 1651] [client 209.50.180.102:26485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.stricklinphotography.com"] [uri "/.git/HEAD"] [unique_id "aSUCKcAdupWbyn-XO9vcgAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 00:12:01
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.180.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:11:52.585254 2025] [security2:error] [pid 27672:tid 27672] [client 209.50.180.102:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.psychoclast.com"] [uri "/.git/HEAD"] [unique_id "aST0SElf_mIzv54maJmfhQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack