๐บ๐ธ
TPI-Abuse
2026-06-29 22:21:21
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 140.235.169.189 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 140.235.169.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 18:21:16.511030 2026] [security2:error] [pid 31606:tid 31606] [client 140.235.169.189:14945] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mimrg.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mimrg.net"] [uri "/wp-json/wp/v2/users"] [unique_id "akLv3IfoI4AIn90E8O--uwAAAAw"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-22 00:22:43
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 140.235.169.189 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 140.235.169.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 20:22:36.429343 2026] [security2:error] [pid 21655:tid 21655] [client 140.235.169.189:56445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vrevgaming.net"] [uri "/wp-config.php~"] [unique_id "ag-hzCfy8qG8vMQUCxnDXgAAAEU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-20 18:09:25
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 140.235.169.189 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 140.235.169.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 14:09:20.438735 2026] [security2:error] [pid 13827:tid 13827] [client 140.235.169.189:21211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "realclean.net"] [uri "/wp-config.php.old"] [unique_id "ag340GmQXet5AuthYuX9WAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-04-14 22:22:42
(2 months ago)
Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-201)
Hacking
Web App Attack
๐ฉ๐ช
John Chrys.
2026-04-01 21:55:41
(3 months ago)
140.235.169.189 - - [02/Apr/2026:00:53:49 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/7.88 ...
show more
140.235.169.189 - - [02/Apr/2026:00:53:49 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/7.88.1"
140.235.169.189 - - [02/Apr/2026:00:53:50 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/7.88.1"
140.235.169.189 - - [02/Apr/2026:00:53:52 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/7.88.1"
140.235.169.189 - - [02/Apr/2026:00:53:53 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/8.6.0"
140.235.169.189 - - [02/Apr/2026:00:53:54 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/7.88.1"
140.235.169.189 - - [02/Apr/2026:00:53:56 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/7.88.1"
...
show less
Brute-Force
Web App Attack
๐ฆ๐บ
MAGIC
2026-01-14 01:05:50
(5 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ซ๐ท
masterguru
2025-12-23 11:00:10
(6 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 140.235.169.189 (US/United States/-): 1 in the ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 140.235.169.189 (US/United States/-): 1 in the last 3600 secs (0-193)
show less
Hacking
Anonymous
2025-12-17 23:01:21
(6 months ago)
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.17 is noted in report tim ...
show more
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.17 is noted in report timestamp
show less
Hacking
Brute-Force
๐ฑ๐ป
garmtech.com
2025-11-30 05:05:02
(7 months ago)
IM360 WAF: Attempt to upload malware
Hacking
๐บ๐ธ
fbarela
2025-11-25 19:00:52
(7 months ago)
FortiGate SSL VPN login failures.
Hacking
Brute-Force
๐จ๐ญ
backslash
2025-10-17 05:05:13
(8 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot