|
Anonymous
|
|
Attempting to access restricted files
|
Hacking
Brute-Force
Web App Attack
|
|
|
๐ฌ๐ง
AvonleaConsulting
|
|
Scanning unused Default website or suspicious access to valid sites from IP marked as abusive
|
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 11:18:10.954303 2025] [security2:error] [pid 5279:tid 5279] [client 31.11.36.161:42322] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelgatley.com"] [uri "/wp-config.php_old"] [unique_id "aHu3Mujl2bgbyOYM-JzcpwAAAAI"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 00:46:32.122350 2025] [security2:error] [pid 3700:tid 3700] [client 31.11.36.161:22862] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "palacio.org"] [uri "/wp-config.php_orig"] [unique_id "aHsjKCrNQpC4-Y2199GdfQAAAAo"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 15:39:21.749748 2025] [security2:error] [pid 17763:tid 17763] [client 31.11.36.161:39084] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "celebrationofdiana.com"] [uri "/wp-config.php1"] [unique_id "aHlRaaHkGk2X2OoTatyYzQAAAAc"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฎ๐น
VHosting
|
|
Detected attack by Imunify360
|
Brute-Force
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 00:22:03.977556 2025] [security2:error] [pid 9491:tid 9491] [client 31.11.36.161:39288] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.noisepie.com"] [uri "/bmcgrafix/index.html/wp-config.php.old"] [unique_id "aHh6aych68V8-YNBsctJzgAAAAQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 23:34:20.367795 2025] [security2:error] [pid 4494:tid 4494] [client 31.11.36.161:27364] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elsaconsulting.com"] [uri "/wp-config.php1"] [unique_id "aHcdvPrknnLcNNpqDORAcwAAAAs"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 21:31:58.854700 2025] [security2:error] [pid 25187:tid 25187] [client 31.11.36.161:36230] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tidarat.com"] [uri "/wp-config.php1"] [unique_id "aHcBDloktR3Z39EUWs3iFQAAAAU"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 19:44:20.645729 2025] [security2:error] [pid 1650:tid 1650] [client 31.11.36.161:45394] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "panierduvillage.com"] [uri "/wp-config.php1"] [unique_id "aHbn1O45fNbLWNeI1mRY8gAAAAU"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
ipblock.com
|
|
IPBlock protected site ID [1365-l].
Exploit request, vulnerability scanner.
|
Hacking
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 08:34:48.027487 2025] [security2:error] [pid 31178:tid 31178] [client 31.11.36.161:40682] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.beckersystems.com"] [uri "/partners/streetpaintingfestival.com/wp-config.php1"] [unique_id "aHZK6MlNbZicpDijxofWFAAAAAU"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 03:05:24.291503 2025] [security2:error] [pid 25381:tid 25381] [client 31.11.36.161:32410] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "likulikubookings.com"] [uri "/wp-config.php.old"] [unique_id "aHX9tOI1Tf8XB3WWLoAKGgAAAAc"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 02:24:51.908978 2025] [security2:error] [pid 9235:tid 9252] [client 31.11.36.161:34696] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arrowsinthequiver.com"] [uri "/wp-config.php1"] [unique_id "aHX0M5-0JDGFOrlu8GErrwAAAI8"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.a ...
show more
(mod_security) mod_security (id:210492) triggered by 31.11.36.161 (host161-36-11-31.serverdedicati.aruba.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 14 21:08:02.076501 2025] [security2:error] [pid 8369:tid 8384] [client 31.11.36.161:28662] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mandhco.com"] [uri "/wp-config.php1"] [unique_id "aHWp8tmjVcCWSKH6kin58AAAAME"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|