๐ฉ๐ช
abdubhai
2026-04-21 03:35:43
(2 months ago)
172.68.159.82 - - [21/Apr/2026:0
...
Brute-Force
๐ฌ๐ง
OptimusGO
2026-03-11 04:15:20
(4 months ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-03-11 04:15:10 UTC
Log evidence:
172.68.159.82 - - [11/Mar/2026:04:05:46 +0000] "GET /.env.example HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Microsoft Windows NT 6.1.7601 Service Pack 1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Version/ 5.0.2Safari/ 5.0.2"
172.68.159.82 - - [11/Mar/2026:04:05:49 +0000] "GET /phpinfo.php HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Windows NT 6.1; Trident/7.0; BOIE9;ENUS; rv:11.0) like Gecko"
03/11/2026-04:05:46.857839 [wDrop] [**] [1:1000110:2] SECURITY CRITICAL: .env File Access Attempt - INSTANT BAN [**] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 172.68.159.82:12811 -> 185.127.18.66:80
show less
Port Scan
Brute-Force
๐ฉ๐ช
ps-center
2026-02-10 06:56:37
(5 months ago)
SS1: Web Attack GET /wp-content/style.php
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
ps-center
2026-02-07 19:32:31
(5 months ago)
SS1: Web Attack GET /wp-content/plugins/hellopress/wp_filemanager.php
Web Spam
Hacking
Bad Web Bot
Web App Attack
Anonymous
2026-02-05 13:05:09
(5 months ago)
PHP file probing detected by Fail2Ban
Web App Attack
๐ณ๐ฑ
frits west
2025-12-01 21:39:55
(7 months ago)
(wordpress) Failed wordpress login from 172.68.159.82 (PL/Poland/-)
Brute-Force
๐บ๐ฆ
URAN Publishing Service
2025-10-07 06:39:48
(9 months ago)
172.68.159.82 - - [07/Oct/2025:09:39:17 +0300] "GET /wp-content/plugins/ubh/up.php HTTP/1.1" 404 282 ...
show more
172.68.159.82 - - [07/Oct/2025:09:39:17 +0300] "GET /wp-content/plugins/ubh/up.php HTTP/1.1" 404 282 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
172.68.159.82 - - [07/Oct/2025:09:39:48 +0300] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 282 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
...
show less
Web App Attack
๐ต๐ฑ
Niko's Stuff
2025-08-10 22:09:56
(11 months ago)
[1x] Triggered application-multi,language-multi platform-multi,attack-generic | Score: 5 | Msg: Inbo ...
show more
[1x] Triggered application-multi,language-multi platform-multi,attack-generic | Score: 5 | Msg: Inbound Anomaly Score Exceeded (Total Score: 5) | Uri: /database.yml | Client: 172.68.159.82 172.68.159.82 | Hostname: api.nikostuff.com | Blocked web application firewall detected attack
show less
Brute-Force
๐บ๐ฆ
URAN Publishing Service
2025-06-14 05:37:22
(1 year ago)
172.68.159.82 - - [14/Jun/2025:08:37:19 +0300] "GET /wp-admin/includes/inputs.php HTTP/1.1" 404 196 ...
show more
172.68.159.82 - - [14/Jun/2025:08:37:19 +0300] "GET /wp-admin/includes/inputs.php HTTP/1.1" 404 196 "-" "-"
172.68.159.82 - - [14/Jun/2025:08:37:20 +0300] "GET /wp-content/uploads/2023/03 HTTP/1.1" 404 196 "-" "-"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2025-05-27 00:29:29
(1 year ago)
172.68.159.82 - - [27/May/2025:03:29:25 +0300] "GET /wp-includes/Text/index.php HTTP/1.1" 404 196 "- ...
show more
172.68.159.82 - - [27/May/2025:03:29:25 +0300] "GET /wp-includes/Text/index.php HTTP/1.1" 404 196 "-" "-"
172.68.159.82 - - [27/May/2025:03:29:28 +0300] "GET /wp-includes/images/media/wp-login.php HTTP/1.1" 404 196 "-" "-"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2025-05-23 11:29:54
(1 year ago)
172.68.159.82 - - [23/May/2025:14:28:20 +0300] "GET /wp-admin/js/admin.php HTTP/1.1" 404 196 "-" "-" ...
show more
172.68.159.82 - - [23/May/2025:14:28:20 +0300] "GET /wp-admin/js/admin.php HTTP/1.1" 404 196 "-" "-"
172.68.159.82 - - [23/May/2025:14:29:54 +0300] "GET /wp-content/plugins/seoo/ulc2.php HTTP/1.1" 404 196 "-" "-"
...
show less
Web App Attack
๐ณ๐ฑ
Study Bitcoin ๐ค
2025-05-21 02:24:59
(1 year ago)
Port probe to tcp/80 (http)
[srv125]
Port Scan
Bad Web Bot
Web App Attack
Anonymous
2025-05-19 05:08:27
(1 year ago)
Restricted File Access Requests
Hacking
Brute-Force
๐บ๐ธ
TPI-Abuse
2025-04-17 12:57:27
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 172.68.159.82 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.159.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 17 08:57:21.099415 2025] [security2:error] [pid 17115:tid 17115] [client 172.68.159.82:34700] [client 172.68.159.82] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chaitanyaconsult.in"] [uri "/.env.example"] [unique_id "aAD6saTqk2zU5oMInVLUHgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-04-06 04:31:16
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 172.68.159.82 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.159.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 06 00:31:10.794560 2025] [security2:error] [pid 26757:tid 26757] [client 172.68.159.82:11730] [client 172.68.159.82] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.globetechsecurities.com"] [uri "/.env.example"] [unique_id "Z_IDjgIuKKX_RJJjVUKRTgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack