๐บ๐ฆ
URAN Publishing Service
2026-07-05 03:42:26
(4 hours ago)
162.158.108.112 - - [05/Jul/2026:06:42:17 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager. ...
show more
162.158.108.112 - - [05/Jul/2026:06:42:17 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 770 "-" "-"
162.158.108.112 - - [05/Jul/2026:06:42:25 +0300] "GET /wp-content/uploads/ HTTP/1.1" 404 683 "-" "-"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-07-01 21:22:41
(3 days ago)
162.158.108.112 - - [02/Jul/2026:00:22:40 +0300] "GET /xmlrpc.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 ...
show more
162.158.108.112 - - [02/Jul/2026:00:22:40 +0300] "GET /xmlrpc.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
162.158.108.112 - - [02/Jul/2026:00:22:41 +0300] "GET /xmlrpc.php0 HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-25 20:41:00
(1 week ago)
162.158.108.112 - - [25/Jun/2026:23:40:58 +0300] "GET /wp-content/admin.php HTTP/1.1" 404 683 "-" "- ...
show more
162.158.108.112 - - [25/Jun/2026:23:40:58 +0300] "GET /wp-content/admin.php HTTP/1.1" 404 683 "-" "-"
162.158.108.112 - - [25/Jun/2026:23:40:59 +0300] "GET /wp-content/themes/pridmag/il.php HTTP/1.1" 404 683 "-" "-"
...
show less
Web App Attack
๐ต๐ฑ
srebrakowski.com
2026-06-16 14:58:21
(2 weeks ago)
crowdsec/waf-detected-exploits
Brute-Force
๐บ๐ฆ
URAN Publishing Service
2026-06-06 02:55:57
(4 weeks ago)
162.158.108.112 - - [06/Jun/2026:05:55:56 +0300] "GET /wp-admin/images/ HTTP/1.1" 404 791 "-" "Mozil ...
show more
162.158.108.112 - - [06/Jun/2026:05:55:56 +0300] "GET /wp-admin/images/ HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-05 22:01:39
(4 weeks ago)
162.158.108.112 - - [06/Jun/2026:00:59:31 +0300] "GET /wp-admin/network/ HTTP/1.1" 404 770 "-" "Go-h ...
show more
162.158.108.112 - - [06/Jun/2026:00:59:31 +0300] "GET /wp-admin/network/ HTTP/1.1" 404 770 "-" "Go-http-client/1.1"
162.158.108.112 - - [06/Jun/2026:01:01:38 +0300] "GET /wp-content/plugins/erinyani/default.php HTTP/1.1" 404 770 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-02 08:09:24
(1 month ago)
162.158.108.112 - - [02/Jun/2026:10:59:43 +0300] "GET /wp-admin/network/ HTTP/1.1" 404 770 "-" "Mozl ...
show more
162.158.108.112 - - [02/Jun/2026:10:59:43 +0300] "GET /wp-admin/network/ HTTP/1.1" 404 770 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
162.158.108.112 - - [02/Jun/2026:11:09:23 +0300] "GET /wp-includes/js/ HTTP/1.1" 404 770 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-22 05:27:36
(1 month ago)
162.158.108.112 - - [22/May/2026:08:27:34 +0300] "GET /wp-includes/html-api/ HTTP/1.1" 404 3352 "-" ...
show more
162.158.108.112 - - [22/May/2026:08:27:34 +0300] "GET /wp-includes/html-api/ HTTP/1.1" 404 3352 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
162.158.108.112 - - [22/May/2026:08:27:35 +0300] "GET /wp-includes/requests/src/response/about.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 13:38:01
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 162.158.108.112 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.108.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 09:35:59.502907 2026] [security2:error] [pid 31832:tid 31832] [client 162.158.108.112:12819] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uraniumjewelry.com"] [uri "/.env.production"] [unique_id "af3mv_-Qe-D45Da_yLcYZAAAAA0"], referer: https://www.google.com/search?q=uraniumjewelry.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 11:24:35
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 162.158.108.112 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.108.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 07:24:20.269301 2026] [security2:error] [pid 6143:tid 6143] [client 162.158.108.112:13520] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yosalvationyo.org.jimwilsongallery.com"] [uri "/sftp-config.json"] [unique_id "af3H5IK1DqaejPDS9zz80AAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-05-07 12:25:45
(1 month ago)
Try to access /.env
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-07 09:30:52
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 162.158.108.112 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.108.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 05:30:44.398487 2026] [security2:error] [pid 23590:tid 23590] [client 162.158.108.112:11731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.koeckeritz.com"] [uri "/.env"] [unique_id "afxbxBts6zOC7RYR02YcBQAAAAg"], referer: https://www.google.com/search?q=cpcalendars.koeckeritz.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
S.O.B.A. Dev.
2026-05-06 11:38:26
(1 month ago)
Persistent port scanning or vulnerability scanning
Port Scan
Anonymous
2026-05-02 03:36:43
(2 months ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-04-30 20:40:55
(2 months ago)
162.158.108.112 - - [30/Apr/2026:23:40:53 +0300] "GET /wp-content/plugins/plugin/ HTTP/1.1" 404 770 ...
show more
162.158.108.112 - - [30/Apr/2026:23:40:53 +0300] "GET /wp-content/plugins/plugin/ HTTP/1.1" 404 770 "-" "Go-http-client/1.1"
162.158.108.112 - - [30/Apr/2026:23:40:54 +0300] "GET /wp-includes/widgets/chosen.php HTTP/1.1" 404 769 "-" "Go-http-client/1.1"
...
show less
Web App Attack