Anonymous
2026-07-03 14:00:34
(1 day ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 22:43:42
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 216.24.210.152 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.24.210.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 18:43:38.231061 2026] [security2:error] [pid 13963:tid 13963] [client 216.24.210.152:64851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "programsforwedding.com"] [uri "/.env"] [unique_id "akbpmmJa9ATobhrstbAC7AAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-01 14:31:33
(2 days ago)
[server.tmg.gr] httpd-login-spray-site: sites=www.pulmonaryhypertension2024.gr; logs=/var/log/httpd/ ...
show more
[server.tmg.gr] httpd-login-spray-site: sites=www.pulmonaryhypertension2024.gr; logs=/var/log/httpd/domains/pulmonaryhypertension2024.gr.log; samples=site_wide=true | distinct_ips=15 | /wp-login.php
show less
Hacking
Web App Attack
Anonymous
2026-05-23 23:46:17
(1 month ago)
Failed Wordpress Logins
Web App Attack
๐ซ๐ท
masterguru
2026-05-12 15:28:31
(1 month ago)
Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-197)
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-12 15:27:42
(1 month ago)
(mod_security) mod_security (id:240000) triggered by 216.24.210.152 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240000) triggered by 216.24.210.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 11:27:38.981537 2026] [security2:error] [pid 29459:tid 29459] [client 216.24.210.152:61993] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||ismaelcavazos.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "ismaelcavazos.com"] [uri "/images/stories/themes.php"] [unique_id "agNG6oK-Ow_LFSOvdGdh7gAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-05-12 12:55:00
(1 month ago)
Excessive multi-domain requests
Brute-Force
๐ฌ๐ง
consul.to
2026-05-12 01:49:07
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐ณ๐ฑ
Site.eu
2026-05-11 00:09:22
(1 month ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ธ
rwgomes
2026-05-09 05:37:43
(1 month ago)
Automated report from Intelligence Finance Tools. IP probed malicious path: /vendor/phpunit/phpunit/ ...
show more
Automated report from Intelligence Finance Tools. IP probed malicious path: /vendor/phpunit/phpunit/src/Util/PHP/. No such resource exists on this server.
show less
Web App Attack
Hacking
๐ซ๐ท
masterguru
2026-05-09 01:41:08
(1 month ago)
Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-193)
Hacking
๐ณ๐ฑ
Site.eu
2026-05-08 06:17:26
(1 month ago)
Excessive multi-domain requests
Brute-Force
๐ซ๐ท
Octopuce
2026-05-07 14:42:47
(1 month ago)
Aggressive web search of vulnerable pages: /Requests/Utility/ /themes/travelscape/ /themes/twentysev ...
show more
Aggressive web search of vulnerable pages: /Requests/Utility/ /themes/travelscape/ /themes/twentyseventeen/page/ /rest-api/fields/ /wp-includes ...
show less
Web App Attack
๐ฎ๐ณ
Genhost
2026-05-07 13:22:50
(1 month ago)
SCANNING OF PHP SHELL FILES
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-05-06 19:47:56
(1 month ago)
(mod_security) mod_security (id:240000) triggered by 216.24.210.152 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240000) triggered by 216.24.210.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 06 15:47:53.265267 2026] [security2:error] [pid 4178:tid 4178] [client 216.24.210.152:58607] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||kingmansvc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "kingmansvc.com"] [uri "/images/stories/themes.php"] [unique_id "afua6amGxIIMvxEMvqz8NQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack