๐ซ๐ท
MatStef132
2026-07-05 13:20:32
(18 hours ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
๐ฆ๐บ
oncord
2026-07-04 13:56:43
(1 day ago)
Form spam
Web Spam
๐ซ๐ท
MatStef132
2026-06-30 22:13:46
(5 days ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
๐ซ๐ท
masterguru
2026-06-28 17:19:22
(1 week ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 92.118.112.32 (US/United States/23052.ip-ptr.t ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 92.118.112.32 (US/United States/23052.ip-ptr.tech): 1 in the last 3600 secs (0-196)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-25 15:34:51
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 92.118.112.32 (23052.ip-ptr.tech): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 92.118.112.32 (23052.ip-ptr.tech): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 11:34:45.798627 2026] [security2:error] [pid 11112:tid 11112] [client 92.118.112.32:56900] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mw-creations.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mw-creations.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aj1KlQii6YMrp1owBEELfAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 00:23:15
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 92.118.112.32 (23052.ip-ptr.tech): 1 in the las ...
show more
(mod_security) mod_security (id:225170) triggered by 92.118.112.32 (23052.ip-ptr.tech): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 20:23:11.699591 2026] [security2:error] [pid 27952:tid 27952] [client 92.118.112.32:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||luisguacache.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "luisguacache.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajsjbyDWzKdOceCVDtyRNwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
Progetto1
2026-06-23 14:27:02
(1 week ago)
Mail - Multiple failed login attempts
Brute-Force
Exploited Host
๐บ๐ธ
TPI-Abuse
2026-06-21 00:15:37
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 92.118.112.32 (23052.ip-ptr.tech): 1 in the las ...
show more
(mod_security) mod_security (id:210492) triggered by 92.118.112.32 (23052.ip-ptr.tech): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 20:15:27.525025 2026] [security2:error] [pid 25474:tid 25486] [client 92.118.112.32:51844] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "royalbusinesssociety.com"] [uri "/kerberos/.env"] [unique_id "ajctH_hevfQ1sNb1mMALkAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
oncord
2026-06-16 01:23:40
(2 weeks ago)
Form spam
Web Spam
๐จ๐ฆ
Mediashaker
2026-06-13 20:14:58
(3 weeks ago)
92.118.112.32 (US/United States/23052.ip-ptr.tech), 3 distributed pop3d attacks on account [redacted ...
show more
92.118.112.32 (US/United States/23052.ip-ptr.tech), 3 distributed pop3d attacks on account [redacted]
show less
Brute-Force
๐บ๐ธ
oncord
2026-06-12 09:26:18
(3 weeks ago)
Form spam
Web Spam
๐ฉ๐ช
BestFans.com
2026-06-11 09:55:17
(3 weeks ago)
Credential brute-force attacks on webpage logins
Brute-Force
๐ฎ๐ฑ
spd.co.il
2026-06-11 08:01:28
(3 weeks ago)
Web application attack detected
Hacking
Web App Attack
๐ฉ๐ช
maxpower
2026-06-09 23:28:48
(3 weeks ago)
(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 92.118.112.32 (US/United States/23052.ip ...
show more
(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 92.118.112.32 (US/United States/23052.ip-ptr.tech): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 92.118.112.32 - - [10/Jun/2026:01:18:30 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" "-" host=musca.spacehosting.ovh
92.118.112.32 - - [10/Jun/2026:01:28:35 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" "-" host=ip116.ip-51-77-95.eu
show less
Port Scan
Anonymous
2026-06-07 22:16:00
(4 weeks ago)
"GET /.env HTTP/1.1"
Hacking
Web App Attack