๐ฉ๐ช
macrob
2026-07-16 10:12:50
(4 hours ago)
2026/07/16 10:12:49 [error] 3825614#3825614: *380818957 access forbidden by rule, client: 95.154.200 ...
show more
2026/07/16 10:12:49 [error] 3825614#3825614: *380818957 access forbidden by rule, client: 95.154.200.39, server: binixo.pl, request: "GET /wp-includes/wlwmanifest.xml HTTP/2.0", host: "binixo.pl"
2026/07/16 10:12:49 [error] 3825617#3825617: *380866949 access forbidden by rule, client: 95.154.200.39, server: binixo.pl, request: "GET /wp-admin HTTP/2.0", host: "binixo.pl"
2026/07/16 10:12:49 [error] 3825613#3825613: *380893770 access forbidden by rule, client: 95.154.200.39, server: binixo.pl, request: "GET /js/mage/adminhtml/product.js HTTP/2.0", host: "binixo.pl"
...
show less
Web App Attack
Anonymous
2026-07-16 09:28:55
(4 hours ago)
FortiWeb WAF: 16 attacks detected. Threat Score: 5600. Types: Client Management(8), Block IP List(8) ...
show more
FortiWeb WAF: 16 attacks detected. Threat Score: 5600. Types: Client Management(8), Block IP List(8). Origin: United Kingdom.
show less
Web App Attack
๐ซ๐ท
Baking333
2026-07-16 03:26:27
(10 hours ago)
[redacted] 95.154.200.39 - - [16/Jul/2026:04:26:23 +0100] "GET /wp-includes/[redacted] HTTP/1.1" 302 ...
show more
[redacted] 95.154.200.39 - - [16/Jul/2026:04:26:23 +0100] "GET /wp-includes/[redacted] HTTP/1.1" 302 1534 0/75819 "-" "Turaco Labs ThreatView Security Auditor ([redacted])" [redacted] 95.154.200.39 - - [16/Jul/2026:04:26:23 +0100] "GET / HTTP/1.1" 200 9112 0/131874 "https://[redacted]/wp-includes/[redacted]" "Turaco Labs ThreatView Security Auditor ([redacted])"
show less
Bad Web Bot
Web App Attack
๐ซ๐ท
largo-it.net
2026-07-15 17:22:07
(21 hours ago)
Jul 15 19:22:05 vps-9f3cdc33 haproxy[908122]: 95.154.200.39:37274 [15/Jul/2026:19:22:04.972] www_fro ...
show more
Jul 15 19:22:05 vps-9f3cdc33 haproxy[908122]: 95.154.200.39:37274 [15/Jul/2026:19:22:04.972] www_frontend~ sav_largo_cluster/sav_https 0/0/11/133/144 404 7521 - - ---- 74/11/0/0/0 0/0 "GET https://sav.largo-france.fr/GNJGGcuUIpuN HTTP/2.0"
Jul 15 19:22:06 vps-9f3cdc33 haproxy[908122]: 95.154.200.39:37274 [15/Jul/2026:19:22:06.148] www_frontend~ sav_largo_cluster/sav_https 0/0/11/40/51 404 573 - - ---- 72/11/0/0/0 0/0 "GET https://sav.largo-france.fr/js/varien/js.js HTTP/2.0"
Jul 15 19:22:06 vps-9f3cdc33 haproxy[908122]: 95.154.200.39:37274 [15/Jul/2026:19:22:06.218] www_frontend~ sav_largo_cluster/sav_https 0/0/11/86/97 404 7524 - - ---- 72/11/0/0/0 0/0 "GET https://sav.largo-france.fr/magento_version HTTP/2.0"
Jul 15 19:22:06 vps-9f3cdc33 haproxy[908122]: 95.154.200.39:37274 [15/Jul/2026:19:22:06.335] www_frontend~ sav_largo_cluster/sav_https 0/0/11/18/29 404 572 - - ---- 72/11/0/0/0 0/0 "GET https://sav.largo-france.fr/js/varien/js.js HTTP/2.0"
Jul 15 19:22:06 vps-9f3cdc33 haproxy[90
...
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
Lee Daniel
2026-07-15 12:28:54
(1 day ago)
95.154.200.39 - - [15/Jul/2026:08:28:48 -0400] "GET /wp-admin HTTP/1.1" 404 45734 "https://caribbean ...
show more
95.154.200.39 - - [15/Jul/2026:08:28:48 -0400] "GET /wp-admin HTTP/1.1" 404 45734 "https://caribbeannewmedia.com/wp-admin" "Turaco Labs ThreatView Security Auditor (threatview.app)"
95.154.200.39 - - [15/Jul/2026:08:28:48 -0400] "GET /feed/ HTTP/1.1" 404 45718 "https://caribbeannewmedia.com/feed/" "Turaco Labs ThreatView Security Auditor (threatview.app)"
95.154.200.39 - - [15/Jul/2026:08:28:49 -0400] "GET /images/wlw/wp-icon.png HTTP/1.1" 404 6258 "https://caribbeannewmedia.com/images/wlw/wp-icon.png" "Turaco Labs ThreatView Security Auditor (threatview.app)"
95.154.200.39 - - [15/Jul/2026:08:28:50 -0400] "GET /administrator/manifests/files/joomla.xml HTTP/1.1" 404 46186 "https://caribbeannewmedia.com/administrator/manifests/files/joomla.xml" "Turaco Labs ThreatView Security Auditor (threatview.app)"
95.154.200.39 - - [15/Jul/2026:08:28:53 -0400] "GET /template/admin/assets/img/logo2.png HTTP/1.1" 404 6271 "https://caribbeannewmedia.com/template/admin/assets/img/logo2.png" "Turaco Lab
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-07-15 04:12:59
(1 day ago)
Wordpress malicious attack:[octaflood]
Web App Attack
Anonymous
2026-07-14 22:42:00
(1 day ago)
DNS AXFR Attempt
DNS Compromise
๐ฆ๐บ
screwlooseit.com.au
2026-07-14 13:09:37
(2 days ago)
Blocked by CSF 13 firewall - Rule: GB/United Kingdom/as032.pub.threatview.app
Web App Attack
Anonymous
2026-07-14 03:04:41
(2 days ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: GB, Attack patterns: Word ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: GB, Attack patterns: WordPress scanning
show less
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-07-13 11:01:40
(3 days ago)
Web attack/malicious scanning detected
Web App Attack
Anonymous
2026-07-13 03:04:07
(3 days ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: GB, Attack patterns: Word ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: GB, Attack patterns: WordPress scanning
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
nodepile
2026-07-11 01:38:20
(5 days ago)
Requests denied due to active blacklist hits (tenant=82 method=GET path=/ ua='Turaco Labs ThreatView ...
show more
Requests denied due to active blacklist hits (tenant=82 method=GET path=/ ua='Turaco Labs ThreatView Security Auditor (threatview.app)')
show less
Web App Attack
Exploited Host
๐บ๐ธ
nodepile
2026-07-09 01:32:42
(1 week ago)
Requests denied due to active blacklist hits (tenant=82 method=HEAD path=/ ua='Turaco Labs ThreatVie ...
show more
Requests denied due to active blacklist hits (tenant=82 method=HEAD path=/ ua='Turaco Labs ThreatView Security Auditor (threatview.app)')
show less
Web App Attack
Exploited Host
๐บ๐ธ
nodepile
2026-06-30 01:37:01
(2 weeks ago)
Requests denied due to active blacklist hits (tenant=82 method=HEAD path=/ ua='Turaco Labs ThreatVie ...
show more
Requests denied due to active blacklist hits (tenant=82 method=HEAD path=/ ua='Turaco Labs ThreatView Security Auditor (threatview.app)')
show less
Web App Attack
Exploited Host
๐ฌ๐ท
setupgr
2026-06-24 03:45:14
(3 weeks ago)
(mod_security) mod_security (id:11000011) triggered by 95.154.200.39 (GB/United Kingdom/England/Lond ...
show more
(mod_security) mod_security (id:11000011) triggered by 95.154.200.39 (GB/United Kingdom/England/London/-/[AS20860 IOMART-AS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 06:45:13.663078 2026] [security2:error] [pid 2393:tid 2449] [remote 95.154.200.39:43284] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "threatview.app" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: as032.pub.threatview.app"] [severity "CRITICAL"] [hostname "mail.asteriassantorini.com"] [uri "/"] [unique_id "ajtSyU_vjpKlxdAVM515_QAA1gc"]
show less
Port Scan