๐ซ๐ท
Octopuce
2026-04-24 04:25:40
(2 months ago)
Aggressive web search of vulnerable pages: /wp-content/themes/travelscape/ /wp-includes/js/plupload/ ...
show more
Aggressive web search of vulnerable pages: /wp-content/themes/travelscape/ /wp-includes/js/plupload/ /wp-includes/rest-api/fields/ /wp-includes ...
show less
Web App Attack
๐บ๐ธ
mnsf
2026-03-03 23:05:33
(4 months ago)
Too many Status 40X (11)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-05 15:06:09
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 185.198.243.199 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 185.198.243.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 05 10:06:03.450497 2026] [security2:error] [pid 365032:tid 365058] [client 185.198.243.199:22939] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ethniclivesmatter.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ethniclivesmatter.com"] [uri "/backup/dump.sql"] [unique_id "aVvTW2yRrYAYuZWKxQA7WgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-18 16:16:30
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 185.198.243.199 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 185.198.243.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 18 11:16:25.618707 2025] [security2:error] [pid 2659:tid 2667] [client 185.198.243.199:55135] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||liquido.cocoonprojects.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "liquido.cocoonprojects.com"] [uri "/sql.sql"] [unique_id "aRyb2dEKv0von7MR9ZVFLAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2025-11-10 07:51:38
(8 months ago)
185.198.243.199 - - [10/Nov/2025:09:51:38 +0200] "GET //wp-admin/js/index.php HTTP/1.1" 404 276 "-" ...
show more
185.198.243.199 - - [10/Nov/2025:09:51:38 +0200] "GET //wp-admin/js/index.php HTTP/1.1" 404 276 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐ฎ๐ฉ
BPS-StatisticsIndonesia
2025-11-10 06:06:54
(8 months ago)
WP Admin Scan Activities
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2025-11-10 02:08:45
(8 months ago)
185.198.243.199 - - [10/Nov/2025:04:06:34 +0200] "GET //wp-admin/fmadmin.php HTTP/1.1" 404 277 "-" " ...
show more
185.198.243.199 - - [10/Nov/2025:04:06:34 +0200] "GET //wp-admin/fmadmin.php HTTP/1.1" 404 277 "-" "Go-http-client/1.1"
185.198.243.199 - - [10/Nov/2025:04:08:45 +0200] "GET //wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 404 277 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐จ๐ญ
backslash
2025-11-10 01:05:08
(8 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ต๐ฑ
Gastro
2025-10-24 05:45:57
(8 months ago)
Mass fake bookings
Fraud Orders
๐ซ๐ท
dynamix
2025-09-17 06:17:12
(9 months ago)
Multiple WAF Violations
Web App Attack
Anonymous
2025-09-17 02:44:57
(9 months ago)
wordpress-trap
Web App Attack
๐ฆ๐บ
advena
2025-09-13 18:46:03
(9 months ago)
185.198.243.199 (AS62240 CLOUVIDER Clouvider - Global ASN) was intercepted at 2025-09-13T18:38:58Z a ...
show more
185.198.243.199 (AS62240 CLOUVIDER Clouvider - Global ASN) was intercepted at 2025-09-13T18:38:58Z after violating WAF directive: 874a3e315c344b1281ad4f00046aab6f. Pre-cautionary/corrective action applied: managed_challenge.
show less
Web Spam
Hacking
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-08-26 03:42:49
(10 months ago)
(mod_security) mod_security (id:225170) triggered by 185.198.243.199 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 185.198.243.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 25 23:42:42.650675 2025] [security2:error] [pid 26371:tid 26371] [client 185.198.243.199:53679] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cubbylure.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cubbylure.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aK0tMoefOCsW5NsILV1sFgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-08-26 03:21:10
(10 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2025-08-23 23:52:35
(10 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH