๐ซ๐ท
dynamix
2026-07-10 18:48:55
(5 days ago)
Multiple WAF Violations
Web App Attack
๐ณ๐ฑ
DrLex0
2026-07-08 05:08:31
(1 week ago)
Distributed attack from multiple IPs in 140.99.1.0/24 range, poking for WordPress
140.99.1.28 80 - ...
show more
Distributed attack from multiple IPs in 140.99.1.0/24 range, poking for WordPress
140.99.1.28 80 - [08/Jul/2026:05:05:11 +0000] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 404 2383 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
140.99.1.28 80 - [08/Jul/2026:05:05:23 +0000] "GET /uploads/94056-upload.phtml HTTP/1.1" 404 2383 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
140.99.1.28 80 - [08/Jul/2026:05:07:03 +0000] "GET /wp-content/uploads/admin.php HTTP/1.1" 404 2383 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95"
140.99.1.28 80 - [08/Jul/2026:05:08:31 +0000] "GET /wp-admin/images/ HTTP/1.1" 404 2383 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36"
show less
DDoS Attack
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Octopuce
2026-06-26 17:28:03
(2 weeks ago)
Aggressive web search of vulnerable pages: /wp-admin/css/colors/modern/colors.css.php /wp-includes/s ...
show more
Aggressive web search of vulnerable pages: /wp-admin/css/colors/modern/colors.css.php /wp-includes/style-engine/adminfus.php /css/media-widget- ...
show less
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-06-19 04:40:48
(3 weeks ago)
Unauthorized access to webpage admin
Web App Attack
๐ฎ๐ณ
dineshskt4all
2026-06-13 17:13:20
(1 month ago)
[Sat Jun 13 17:13:12.720045 2026] [proxy_fcgi:error] [pid 3305449:tid 138838500435648] [client 140.9 ...
show more
[Sat Jun 13 17:13:12.720045 2026] [proxy_fcgi:error] [pid 3305449:tid 138838500435648] [client 140.99.1.28:0] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐ฉ๐ช
EGP Abuse Dept
2026-04-01 23:59:37
(3 months ago)
Scanning for web/db/file exploits on www.jessoptiek.nl
SQL Injection
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-01 23:41:20
(3 months ago)
(mod_security) mod_security (id:234930) triggered by 140.99.1.28 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:234930) triggered by 140.99.1.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 19:41:16.171083 2026] [security2:error] [pid 9741:tid 9741] [client 140.99.1.28:32003] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)||www.321q.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "www.321q.com"] [uri "/rcs/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "ac2tHJKQlzPW3l3rUcayRQAAAAs"], referer: http://rcsgraphics.com/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Octopuce
2026-03-04 07:37:08
(4 months ago)
Aggressive web search of vulnerable pages: /wp-includes/blocks/ /wp-includes/certificates/ /wp-admin ...
show more
Aggressive web search of vulnerable pages: /wp-includes/blocks/ /wp-includes/certificates/ /wp-admin/images/ /wp-admin/maint/ /wp-admin/meta/ / ...
show less
Web App Attack
๐ท๐บ
sms.ru
2026-03-03 19:16:47
(4 months ago)
/wp-admin/js/index.php
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-03-03 02:24:46
(4 months ago)
140.99.1.28 - - [03/Mar/2026:04:24:45 +0200] "GET /wp-includes/js/dist/ HTTP/1.1" 404 282 "-" "Mozil ...
show more
140.99.1.28 - - [03/Mar/2026:04:24:45 +0200] "GET /wp-includes/js/dist/ HTTP/1.1" 404 282 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36"
...
show less
Web App Attack
๐ณ๐ฑ
EGP Abuse Dept
2026-03-03 00:01:18
(4 months ago)
Scanning for port/service exploits on tpc-015.mach3builders.nl
Port Scan
Hacking
๐บ๐ฆ
URAN Publishing Service
2026-03-02 13:46:32
(4 months ago)
140.99.1.28 - - [02/Mar/2026:15:46:31 +0200] "GET /wp-admin/css/colors/midnight/admin.php HTTP/1.1" ...
show more
140.99.1.28 - - [02/Mar/2026:15:46:31 +0200] "GET /wp-admin/css/colors/midnight/admin.php HTTP/1.1" 404 276 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-03-02 12:21:27
(4 months ago)
140.99.1.28 - - [02/Mar/2026:14:21:22 +0200] "GET /wp-admin/chosen.php HTTP/1.1" 404 274 "-" "Mozill ...
show more
140.99.1.28 - - [02/Mar/2026:14:21:22 +0200] "GET /wp-admin/chosen.php HTTP/1.1" 404 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36"
140.99.1.28 - - [02/Mar/2026:14:21:26 +0200] "GET /wp-content/plugins/bypass.php HTTP/1.1" 404 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36"
...
show less
Web App Attack
๐ซ๐ท
dynamix
2026-03-02 07:30:26
(4 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
mnsf
2026-02-25 10:05:54
(4 months ago)
Too many Status 40X (11)
Brute-Force
Web App Attack