Anonymous
2026-07-17 16:22:37
(23 hours ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
Anonymous
2026-07-08 05:11:42
(1 week ago)
[Wed Jul 08 07:11:41.011338 2026] [authz_core:error] [pid 23473] [client 172.68.194.166:12925] AH016 ...
show more
[Wed Jul 08 07:11:41.011338 2026] [authz_core:error] [pid 23473] [client 172.68.194.166:12925] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Wed Jul 08 07:11:41.254005 2026] [authz_core:error] [pid 23473] [client 172.68.194.166:12925] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Wed Jul 08 07:11:41.486386 2026] [authz_core:error] [pid 23473] [client 172.68.194.166:12925] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 15:06:28
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:06:23.604895 2026] [security2:error] [pid 22055:tid 22055] [client 172.68.194.166:9315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "swampoodlegrounds.com"] [uri "/.git/config"] [unique_id "akZ-b1d0JWWGsH-wWt-ESwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-15 05:49:34
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 20:00:32
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 16:00:26.431345 2026] [security2:error] [pid 5725:tid 5725] [client 172.68.194.166:10946] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "owengmail.com"] [uri "/.git/config"] [unique_id "ah82WtqCjjPBWMzacCrENgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-31 12:03:27
(1 month ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/install.php
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-05-28 20:02:11
(1 month ago)
dot file probe
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-17 13:13:39
(2 months ago)
172.68.194.166 - - [17/May/2026:16:03:40 +0300] "GET /wp-admin/images/ HTTP/1.1" 404 762 "-" "Mozlil ...
show more
172.68.194.166 - - [17/May/2026:16:03:40 +0300] "GET /wp-admin/images/ HTTP/1.1" 404 762 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
172.68.194.166 - - [17/May/2026:16:13:39 +0300] "GET /wp-includes/requests/ HTTP/1.1" 404 762 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
WellSpring
2026-05-15 21:57:34
(2 months ago)
wordpress scan on 781.today/wp-admin/install.php โ WellSpr.ing/NetSentinel civic-AI security layer
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-11 16:19:28
(2 months ago)
172.68.194.166 - - [11/May/2026:19:19:26 +0300] "GET /wp-login.php HTTP/1.1" 404 684 "https://www.go ...
show more
172.68.194.166 - - [11/May/2026:19:19:26 +0300] "GET /wp-login.php HTTP/1.1" 404 684 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-10 23:44:52
(2 months ago)
172.68.194.166 - - [11/May/2026:02:44:50 +0300] "GET /wp/wp-content/plugins/ckeditor-for-wordpress/f ...
show more
172.68.194.166 - - [11/May/2026:02:44:50 +0300] "GET /wp/wp-content/plugins/ckeditor-for-wordpress/filemanager/browser/default/browser.html HTTP/1.1" 404 762 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
172.68.194.166 - - [11/May/2026:02:44:51 +0300] "GET /wp-content/plugins/ckeditor/filemanager/browser/default/browser.html HTTP/1.1" 404 761 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-09 10:08:22
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 06:08:15.659107 2026] [security2:error] [pid 6932:tid 6932] [client 172.68.194.166:13797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mylitta.com"] [uri "/.git/config"] [unique_id "af8HjwfbepZ2ye1knAc_dgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-09 06:41:53
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 02:41:46.043768 2026] [security2:error] [pid 28689:tid 28689] [client 172.68.194.166:13016] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelholdengc.com"] [uri "/.git/config"] [unique_id "af7XKrzg6oAkLHg2bOoGeQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-09 03:57:32
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 23:57:26.970476 2026] [security2:error] [pid 6793:tid 6793] [client 172.68.194.166:9788] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cookingwithjule.com"] [uri "/.git/config"] [unique_id "af6wpmX85T0XUSDwcosU8AAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 10:59:10
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 06:59:03.073423 2026] [security2:error] [pid 24485:tid 24485] [client 172.68.194.166:13827] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.hppagewidetampa.com"] [uri "/.git/config"] [unique_id "afM193gMErrvWvzwUeyu-AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack