๐ณ๐ด
jad-abuse
2026-07-06 23:08:16
(1 week ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_admin. ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_admin. Observed by 1 sensor(s); 1 hits.
show less
Brute-Force
Web App Attack
Anonymous
2026-07-06 14:42:35
(1 week ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
Anonymous
2026-07-05 04:27:20
(1 week ago)
[Sun Jul 05 06:27:00.469050 2026] [authz_core:error] [pid 11841] [client 141.101.76.40:12394] AH0163 ...
show more
[Sun Jul 05 06:27:00.469050 2026] [authz_core:error] [pid 11841] [client 141.101.76.40:12394] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Jul 05 06:27:00.814699 2026] [authz_core:error] [pid 11841] [client 141.101.76.40:12394] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Jul 05 06:27:20.049395 2026] [authz_core:error] [pid 11367] [client 141.101.76.40:13731] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐ฆ๐ฑ
router.al
2026-07-04 04:24:43
(1 week ago)
07/04/2026-04:24:43.015299 141.101.76.40 Protocol: 6 ET WEB_SERVER WEB-PHP phpinfo access
Port Scan
๐ท๐บ
DZBOT
2026-07-02 02:57:18
(1 week ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
Anonymous
2026-07-01 17:19:17
(1 week ago)
[Wed Jul 01 19:19:13.152980 2026] [authz_core:error] [pid 11279] [client 141.101.76.40:10698] AH0163 ...
show more
[Wed Jul 01 19:19:13.152980 2026] [authz_core:error] [pid 11279] [client 141.101.76.40:10698] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Wed Jul 01 19:19:15.458183 2026] [authz_core:error] [pid 11279] [client 141.101.76.40:10698] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Wed Jul 01 19:19:17.097096 2026] [authz_core:error] [pid 11279] [client 141.101.76.40:10698] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐ฌ๐ง
OptimusGO
2026-07-01 16:56:40
(1 week ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-07-01 17:56:40 UTC
Log evidence:
07/01/2026-17:56:39.529153 [**] [1:9000060:2] AUTONOMOUS Long-term Reconnaissance [**] [Classification: (null)] [Priority: 2] {TCP} 141.101.76.40:9237 -> 185.127.18.66:80
show less
Port Scan
Brute-Force
๐ฆ๐ฑ
router.al
2026-06-19 23:59:44
(3 weeks ago)
06/19/2026-23:59:43.406526 141.101.76.40 Protocol: 6 GPL WEB_SERVER 403 Forbidden
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-17 19:45:49
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 141.101.76.40 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.76.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 15:45:45.156014 2026] [security2:error] [pid 31536:tid 31536] [client 141.101.76.40:11480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aimer.es.aticom.es"] [uri "/.git/config"] [unique_id "ajL5aXc4ZZgSI4asZJPP0AAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-17 00:08:30
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
Anonymous
2026-06-14 13:53:23
(4 weeks ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 23:02:44
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 141.101.76.40 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 141.101.76.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 19:02:38.990203 2026] [security2:error] [pid 14414:tid 14414] [client 141.101.76.40:10966] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "timquanconsulting.homehealth101.com"] [uri "/.git/config"] [unique_id "aidKDlJx7kC2uUbuWdM_hAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-31 16:39:33
(1 month ago)
[Sun May 31 18:39:32.356845 2026] [authz_core:error] [pid 15729] [client 141.101.76.40:11718] AH0163 ...
show more
[Sun May 31 18:39:32.356845 2026] [authz_core:error] [pid 15729] [client 141.101.76.40:11718] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun May 31 18:39:32.546650 2026] [authz_core:error] [pid 15729] [client 141.101.76.40:11718] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun May 31 18:39:32.730709 2026] [authz_core:error] [pid 15729] [client 141.101.76.40:11718] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
Anonymous
2026-05-31 06:01:04
(1 month ago)
[Sun May 31 08:01:03.177689 2026] [authz_core:error] [pid 31905] [client 141.101.76.40:12849] AH0163 ...
show more
[Sun May 31 08:01:03.177689 2026] [authz_core:error] [pid 31905] [client 141.101.76.40:12849] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun May 31 08:01:03.554205 2026] [authz_core:error] [pid 31905] [client 141.101.76.40:12849] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun May 31 08:01:03.739211 2026] [authz_core:error] [pid 31905] [client 141.101.76.40:12849] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐บ๐ธ
mnsf
2026-05-29 12:05:46
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack