This IP address has been reported a total of
434
times from
166 distinct
sources.
185.223.152.139 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
(mod_security) mod_security (id:234930) triggered by 185.223.152.139 (-): 1 in the last 300 secs; Po ...
show more(mod_security) mod_security (id:234930) triggered by 185.223.152.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 06:36:30.713496 2026] [security2:error] [pid 26430:tid 26430] [client 185.223.152.139:49913] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)||jrqdesign.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "jrqdesign.com"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "aj5WLkGXWSe2Y2vcTCpUmQAAABw"]
show less
(mod_security) mod_security (id:234930) triggered by 185.223.152.139 (-): 1 in the last 300 secs; Po ...
show more(mod_security) mod_security (id:234930) triggered by 185.223.152.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 05:48:50.631289 2026] [security2:error] [pid 9654:tid 9654] [client 185.223.152.139:58809] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6787"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)||jessemack.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "jessemack.com"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "aj5LAqd4kWlkv3I4eyPMAgAAABA"]
show less
Aggressive web search of vulnerable pages: /wp-login.php /wp-includes/js/tinymce/themes/about.php /m ...
show moreAggressive web search of vulnerable pages: /wp-login.php /wp-includes/js/tinymce/themes/about.php /mah/function.php /wp-content/themes/admin.ph ...
show less