π³πΏ
billyborsht
2026-07-18 03:09:08
(1 day ago)
2026-07-18T15:09:07.566039+12:00 southern wordpress(leanpolicy.org)[3004871]: Authentication attempt ...
show more
2026-07-18T15:09:07.566039+12:00 southern wordpress(leanpolicy.org)[3004871]: Authentication attempt for unknown user admin from 216.26.247.202
...
show less
Hacking
Web App Attack
π«π·
dynamix
2026-07-12 09:00:07
(1 week ago)
WordPress wp-login.php Brute Force Attack
Brute-Force
Web App Attack
Anonymous
2026-07-10 01:52:54
(1 week ago)
2026-07-10T03:52:53.363111+02:00 polaris wp(sahpa.co.za)[169723]: Authentication attempt for unknown ...
show more
2026-07-10T03:52:53.363111+02:00 polaris wp(sahpa.co.za)[169723]: Authentication attempt for unknown user wp-user from 216.26.247.202
...
show less
Brute-Force
Web App Attack
π©πͺ
4server
2026-06-13 22:02:55
(1 month ago)
[SunJun1400:02:49.8204822026][security2:error][pid1743442:tid1743564][client216.26.247.202:0]ModSecu ...
show more
[SunJun1400:02:49.8204822026][security2:error][pid1743442:tid1743564][client216.26.247.202:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"giftech.ch\"][uri\"/wp-login.php\"][unique_id\"ai3Tif72HTeeddkp-GKymQAAAQY\"]\,referer:https://giftech.ch/wp-login.php
show less
Port Scan
Brute-Force
Web App Attack
π©πͺ
bsoft.de
2026-01-17 17:02:14
(6 months ago)
Blocked because of abusive behavior
DDoS Attack
πΊπΈ
TPI-Abuse
2026-01-08 13:41:03
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 08 08:40:58.346494 2026] [security2:error] [pid 29835:tid 29835] [client 216.26.247.202:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hvacs-aircon.com"] [uri "/.env"] [unique_id "aV-z6mqxUCPPUigAKi-elwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Packets-Decreaser.NET
2025-12-29 14:01:18
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
πΊπΈ
TPI-Abuse
2025-12-29 05:06:22
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:06:17.850391 2025] [security2:error] [pid 12279:tid 12279] [client 216.26.247.202:25937] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leevardaman.com"] [uri "/.env"] [unique_id "aVIMSTvU2uoCSx1dV2MtRwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-12-15 23:21:26
(7 months ago)
wordpress-trap
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-27 04:35:17
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 23:35:11.919891 2025] [security2:error] [pid 15721:tid 15721] [client 216.26.247.202:29439] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.alaskadreamspublishing.com"] [uri "/.env"] [unique_id "aSfU_9yDSzF9ah1QMKbXhQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-26 16:53:31
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 11:53:24.804201 2025] [security2:error] [pid 12904:tid 12904] [client 216.26.247.202:57383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ablg.net"] [uri "/.svn/wc.db"] [unique_id "aScwhMoLO1nvkBnMUeIthQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
SSH-Admin
2025-11-25 17:20:26
(7 months ago)
Probing for Exploits
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 06:46:32
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:46:27.827879 2025] [security2:error] [pid 3629:tid 3629] [client 216.26.247.202:13345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.odysseydogasporlari.com"] [uri "/.env"] [unique_id "aSVQw4oonSQGHJEXGW63gQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 05:52:45
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:52:38.759190 2025] [security2:error] [pid 2395:tid 2395] [client 216.26.247.202:27719] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.gewgawdesigns.com"] [uri "/.env"] [unique_id "aSVEJjiCjYdsAZmLi_akwgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 05:26:29
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.247.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:26:23.917038 2025] [security2:error] [pid 22020:tid 22020] [client 216.26.247.202:59275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.riversidecabinswv.com"] [uri "/.env"] [unique_id "aSU9_xrBAfkmhub1e7bIvAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack