๐บ๐ธ
conrad10781
2026-07-02 20:49:44
(1 day ago)
nginx-wordpress
Web App Attack
Anonymous
2026-07-01 16:10:04
(2 days ago)
| Multiple SQL injection attempts from same source ip.(multiple servers)
Web App Attack
Hacking
SQL Injection
๐น๐ผ
kk_it_man
2026-05-27 05:30:33
(1 month ago)
Hacking
๐ซ๐ท
tilellit.pro
2026-05-21 15:47:28
(1 month ago)
Fail2Ban banned 77.95.172.74 for security violations in jail wp-armour. Log: 2026/05/21 15:47:27 [er ...
show more
Fail2Ban banned 77.95.172.74 for security violations in jail wp-armour. Log: 2026/05/21 15:47:27 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 77.95.172.74 | Target: wplogin" , client: 77.95.172.74, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐ฌ๐ง
consul.to
2026-05-19 14:46:35
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐ซ๐ท
tilellit.pro
2026-05-17 06:55:20
(1 month ago)
Fail2Ban banned 77.95.172.74 for security violations in jail wp-armour. Log: 2026/05/17 06:55:19 [er ...
show more
Fail2Ban banned 77.95.172.74 for security violations in jail wp-armour. Log: 2026/05/17 06:55:19 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 77.95.172.74 | Target: wplogin" , client: 77.95.172.74, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐บ๐ธ
TPI-Abuse
2026-05-15 03:02:44
(1 month ago)
(mod_security) mod_security (id:218580) triggered by 77.95.172.74 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:218580) triggered by 77.95.172.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 23:02:37.142699 2026] [security2:error] [pid 10087:tid 10087] [client 77.95.172.74:29093] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\/\\\\*[!+](?:[\\\\w\\\\s=_\\\\-()]+)?\\\\*\\\\/)" at ARGS:Id. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "76"] [id "218580"] [rev "1"] [msg "COMODO WAF: MySQL in-line comment detected.||www.teatrosohomadrid.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "www.teatrosohomadrid.com"] [uri "/es/ficha-espectaculo.php"] [unique_id "agaMzVlqvygxWkGYaB-j1gAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฟ
ptlab
2026-04-01 14:45:35
(3 months ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
๐ฎ๐น
VHosting
2026-03-26 20:24:48
(3 months ago)
Detected attack and reported by a human
Brute-Force
Web App Attack
SSH
DDoS Attack
Exploited Host
Bad Web Bot
๐จ๐ฆ
polycoda
2026-03-21 20:48:51
(3 months ago)
๐ Probes for wp-login.php and other inexistent URLs
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-16 19:31:57
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 77.95.172.74 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 77.95.172.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 16 15:31:49.911850 2026] [security2:error] [pid 5217:tid 5217] [client 77.95.172.74:41143] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||alan-ip.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "alan-ip.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abhapbQtrrofN4c5nGdqrAAAACA"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-14 19:03:51
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 77.95.172.74 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 77.95.172.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 15:03:45.720148 2026] [security2:error] [pid 20952:tid 20952] [client 77.95.172.74:36521] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||insidepublications.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "insidepublications.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abWxEXa9lxYdb1Lx1nBQQQAAAAM"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack