๐ซ๐ท
pm33
2026-06-21 01:40:52
(1 week ago)
Wordpress login attempts
Brute-Force
๐บ๐ธ
lostswordfish.com
2026-06-19 06:10:05
(1 week ago)
Wordfence waf block on ncrsol
Web App Attack
๐ฉ๐ช
Tha_14
2026-06-12 12:49:08
(2 weeks ago)
Attempt to log in with non-existing username: root
Bad Web Bot
๐ฌ๐ท
setupgr
2026-06-11 05:51:24
(3 weeks ago)
(mod_security) mod_security (id:900001) triggered by 209.50.184.165: 1 in the last 86400 secs; Ports ...
show more
(mod_security) mod_security (id:900001) triggered by 209.50.184.165: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 08:51:23.325338 2026] [security2:error] [pid 2066466:tid 2066611] [client 209.50.184.165:52223] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.cpanagiotou.gr"] [severity "CRITICAL"] [tag "security"] [hostname "mail.cpanagiotou.gr"] [uri "/wp-login.php"] [unique_id "aipM28c6cMSutqv1Jre4WwAAAIc"], referer: https://mail.cpanagiotou.gr/wp-login.php
show less
Port Scan
๐บ๐ธ
ShadowWhisperer
2026-05-26 10:59:49
(1 month ago)
DOCKER port scan / probe. GET /secrets
Port Scan
๐ฑ๐ป
garmtech.com
2026-02-28 16:38:00
(4 months ago)
IM360 WAF: Attempt to upload malware
Hacking
๐บ๐ธ
TPI-Abuse
2026-02-10 03:11:52
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:11:41.228088 2026] [security2:error] [pid 25475:tid 25475] [client 209.50.184.165:26699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnairdenterprisesllc.com"] [uri "/api/.env"] [unique_id "aYqh7TODopbbiqfrIY3tfQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 02:00:50
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:00:42.284016 2026] [security2:error] [pid 11053:tid 11053] [client 209.50.184.165:44879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kidswow.net"] [uri "/.env.save"] [unique_id "aYqRSj-cqj4a3bwDZbtYUQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 22:40:22
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:40:17.710080 2026] [security2:error] [pid 21941:tid 21941] [client 209.50.184.165:60295] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "macryder.com"] [uri "/dev/.git/config"] [unique_id "aYpiUVqvakrIo5fB8R6EyQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 22:04:25
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:04:16.476568 2026] [security2:error] [pid 8470:tid 8470] [client 209.50.184.165:12379] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathleenullmann.com"] [uri "/site/.git/config"] [unique_id "aYpZ4AHCmcuJPRdqKJCqSgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 21:08:59
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:08:40.002876 2026] [security2:error] [pid 19972:tid 19972] [client 209.50.184.165:47071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karendraughon.com"] [uri "/backend/.env"] [unique_id "aYpM2EK0heMOjmffCTNBdgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-09 20:46:09
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:46:06.843070 2026] [security2:error] [pid 15998:tid 15998] [client 209.50.184.165:12099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honnwong.com"] [uri "/site/.git/config"] [unique_id "aYpHjjvBXIqHePtWKGgMGwAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
10dencehispahard SL
2026-01-23 07:10:09
(5 months ago)
Wordpress probing for vulnerabilities
Hacking
Exploited Host
๐ฌ๐ง
Steve
2025-11-13 00:39:29
(7 months ago)
Repeated attempts against wordpress site
Brute-Force
Web App Attack
๐บ๐ธ
oncord
2025-11-12 01:50:58
(7 months ago)
Form spam
Web Spam