๐ฆ๐บ
afleventoffice.com.au
2026-07-11 02:08:14
(6 days ago)
GET /wp-content/index.php HTTP/1.1
Web App Attack
๐ซ๐ท
Octopuce
2026-04-16 17:16:14
(3 months ago)
Aggressive web search of vulnerable pages: /menu.php /alfa.php /file.php /mini.php /info.php /log.ph ...
show more
Aggressive web search of vulnerable pages: /menu.php /alfa.php /file.php /mini.php /info.php /log.php /wso.php /modules/scrollbottom/anamama-2. ...
show less
Web App Attack
๐บ๐ธ
mnsf
2026-03-05 00:05:10
(4 months ago)
Too many Status 40X (11)
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-03-03 23:05:21
(4 months ago)
Too many Status 40X (11)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-26 18:26:31
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 185.198.243.209 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 185.198.243.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 26 13:26:26.441102 2026] [security2:error] [pid 19651:tid 19698] [client 185.198.243.209:64337] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.fishrapper.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.fishrapper.com"] [uri "/backups/backup.sql"] [unique_id "aaCQUtxXd_LprvQL-WZ10AAAAEw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
Valhalla
2026-02-14 17:08:24
(5 months ago)
/backups/www.rar
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-25 21:46:56
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 185.198.243.209 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 185.198.243.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 16:46:52.463414 2026] [security2:error] [pid 31932:tid 31943] [client 185.198.243.209:51893] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||siestakeybch.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "siestakeybch.com"] [uri "/backup/www.sql"] [unique_id "aXaPTPRcCAAmY-htJ2KQ9AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-01-09 12:05:37
(6 months ago)
Request Overload (243)
Brute-Force
Web App Attack
๐ฒ๐พ
Rizzy
2026-01-09 11:39:08
(6 months ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2025-11-24 22:23:14
(7 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-16 01:00:24
(8 months ago)
(mod_security) mod_security (id:210492) triggered by 185.198.243.209 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 185.198.243.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 20:00:15.238406 2025] [security2:error] [pid 13715:tid 13715] [client 185.198.243.209:53383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dudleyanddudley.com"] [uri "/sftp-config.json"] [unique_id "aRkiH9H_bs9SludckDGE1gAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Penny Packer
2025-11-15 04:54:04
(8 months ago)
Fail2Ban apache-tripwires
Web App Attack
๐บ๐ธ
Penny Packer
2025-11-11 04:21:16
(8 months ago)
Fail2Ban apache-tripwires
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-11 04:00:10
(8 months ago)
(mod_security) mod_security (id:210730) triggered by 185.198.243.209 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 185.198.243.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 22:59:58.999613 2025] [security2:error] [pid 28479:tid 28479] [client 185.198.243.209:38029] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||bitcointoolfair.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bitcointoolfair.com"] [uri "/backup/sql.sql"] [unique_id "aRK0vmGIvk5hfjfvthXExQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ps-center
2025-11-10 08:57:41
(8 months ago)
DIS: Web Attack GET //wp-includes/js/index.php
Web Spam
Hacking
Bad Web Bot
Web App Attack