๐ฉ๐ช
FeG Deutschland
2026-06-04 12:49:03
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 08:41:21
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 04:41:13.783521 2026] [security2:error] [pid 26857:tid 26857] [client 185.132.187.140:24489] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "burlison.com"] [uri "/.git/HEAD"] [unique_id "aiE6KRRBKk5YXpJeNfXuBQAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-04 08:07:13
(1 month ago)
Abuse Detected (4)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 08:05:43
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 04:05:37.766418 2026] [security2:error] [pid 21289:tid 21289] [client 185.132.187.140:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "365soft.top"] [uri "/.git/HEAD"] [unique_id "aiEx0X1g5pNxj5txoVvycwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 07:12:11
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 03:12:05.178344 2026] [security2:error] [pid 346:tid 346] [client 185.132.187.140:59365] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "metalgecko.com"] [uri "/.git/HEAD"] [unique_id "aiElRRJxx3Boo7tMES7jzwAAACo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฟ๐ฆ
Tokolosh Hunters
2026-04-30 03:17:48
(2 months ago)
AutoBlockWindow-Known bad useragent query-2026-04-30 03:17:47
Bad Web Bot
๐บ๐ฆ
URAN Publishing Service
2026-04-29 16:23:41
(2 months ago)
185.132.187.140 - - [29/Apr/2026:19:23:41 +0300] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1. ...
show more
185.132.187.140 - - [29/Apr/2026:19:23:41 +0300] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1"
185.132.187.140 - - [29/Apr/2026:19:23:41 +0300] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐บ๐ธ
mnsf
2026-04-29 16:05:22
(2 months ago)
Too many Status 40X (12)
Brute-Force
Web App Attack
๐จ๐ญ
backslash
2026-04-03 13:42:01
(3 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ซ๐ท
conseilgouz
2026-03-18 20:17:36
(3 months ago)
ame-6 : Trying access system files=>/license.php(license.php)
Hacking
๐ต๐พ
armandosaucedo.me
2026-03-10 00:42:33
(4 months ago)
185.132.187.140 - - [10/Mar/2026:00:42:30 +0000] "GET /old/public_html.gz HTTP/1.1" 404 196 "-" "-"
Web App Attack
๐ซ๐ท
Octopuce
2026-03-07 23:13:30
(4 months ago)
Aggressive web search of vulnerable pages: /wp-content/about.php /mah/function.php /3PJcpMFsD8B.php ...
show more
Aggressive web search of vulnerable pages: /wp-content/about.php /mah/function.php /3PJcpMFsD8B.php /function.php /wp-admin.php /dropdown.php / ...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-05 07:01:55
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 05 02:01:46.928928 2026] [security2:error] [pid 12202:tid 12202] [client 185.132.187.140:31423] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||mpaexchangeinc.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mpaexchangeinc.com"] [uri "/backup/mysql.sql"] [unique_id "aakqWm6blVLmkYkTsWz-sgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Tripwire
2026-02-25 03:14:21
(4 months ago)
Scanning for database dumps - /backups/mysql.sql
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-23 01:15:41
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 185.132.187.140 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 20:15:38.082165 2026] [security2:error] [pid 30403:tid 30403] [client 185.132.187.140:25691] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.pcga.golf|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.pcga.golf"] [uri "/restore/www.sql"] [unique_id "aZuqOthwDJKxWEDcA-PEuQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack