๐บ๐ธ
TheJimmo
2026-07-16 13:47:16
(10 hours ago)
64.112.57.152 64.112.57.152 - - [16/Jul/2026:13:45:34 +0000] "POST /index.php%3F-d+allow_url_include ...
show more
64.112.57.152 64.112.57.152 - - [16/Jul/2026:13:45:34 +0000] "POST /index.php%3F-d+allow_url_include%3don+-d+auto_prepend_file%3dphp%3a//input HTTP/1.1" 404 13457 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"
64.112.57.152 64.112.57.152 - - [16/Jul/2026:13:45:34 +0000] "GET /passwordrecovered.cgi?id=U4Yrj HTTP/1.1" 404 13388 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"
64.112.57.152 64.112.57.152 - - [16/Jul/2026:13:45:35 +0000] "GET /manage/webshell/u%3Fs=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 13506 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"
64.112.57.152 64.112.57.152 - - [16/Jul/2026:13:45:42 +0000] "GET /index.php%3Fapp=main&inc=core_auth&route=login HTTP/1.1" 404 13426 "-" "Mo
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-15 21:21:39
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
Anonymous
2026-07-15 18:20:09
(1 day ago)
64.112.57.152 - - [15/Jul/2026:20:20:08 +0200] "GET /?rsd=' HTTP/2.0" 403 555 "-" "Mozilla/5.0 (Maci ...
show more
64.112.57.152 - - [15/Jul/2026:20:20:08 +0200] "GET /?rsd=' HTTP/2.0" 403 555 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"
show less
Web App Attack
Anonymous
2026-07-15 14:36:50
(1 day ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/admin-ajax.php
Web App Attack
๐ฉ๐ช
conseilgouz
2026-07-14 07:05:08
(2 days ago)
vee-12 : Block return, carriage return, ... characters=>/component/weblinks/weblink/37-hl-detailing? ...
show more
vee-12 : Block return, carriage return, ... characters=>/component/weblinks/weblink/37-hl-detailing?catid=12&Itemid=1029&task=weblink.go'(')
show less
Hacking
๐ซ๐ท
conseilgouz
2026-07-14 06:32:36
(2 days ago)
sae-12 : Block return, carriage return, ... characters=>/media/system/js/core.min.js?a3d8f8='(' ...
show more
sae-12 : Block return, carriage return, ... characters=>/media/system/js/core.min.js?a3d8f8='(')
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-14 06:05:27
(2 days ago)
(mod_security) mod_security (id:211190) triggered by 64.112.57.152 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:211190) triggered by 64.112.57.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 02:05:10.041368 2026] [security2:error] [pid 13919:tid 13996] [client 64.112.57.152:45845] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||digital4z.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?option=com_gcalendar&controller=../../../../../etc/passwd%00"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "digital4z.com"] [uri "/index.php"] [unique_id "alXRlvKTb_jTV0mWWlt7IAAAAdM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
tropicalidad.be
2026-07-13 22:41:08
(3 days ago)
blog spam/exploit attempt
Blog Spam
Hacking
๐ฉ๐ช
Hugopvigo
2026-07-13 22:08:10
(3 days ago)
"2026-07-13 22:08:10+00:00 64.112.57.152 IP con score alto (85) detectada en el log."
Brute-Force
SSH
๐ฉ๐ช
conseilgouz
2026-07-13 16:08:50
(3 days ago)
mae-12 : Block return, carriage return, ... characters=>/media/system/js/messages.min.js?9a4811= ...
show more
mae-12 : Block return, carriage return, ... characters=>/media/system/js/messages.min.js?9a4811='(')
show less
Hacking
Anonymous
2026-07-13 15:25:29
(3 days ago)
IP banned by Fail2Ban in jail nginx-abusive-ips
Web App Attack
Brute-Force
Bad Web Bot
๐ฉ๐ช
conseilgouz
2026-07-13 13:27:50
(3 days ago)
doe-12 : Block return, carriage return, ... characters=>/media/astroid/js/megamenu.min.js?4c94a5=� ...
show more
doe-12 : Block return, carriage return, ... characters=>/media/astroid/js/megamenu.min.js?4c94a5='(')
show less
Hacking
๐ฉ๐ช
Vegascosmetics
2026-07-13 11:05:56
(3 days ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐บ๐ธ
TPI-Abuse
2026-07-11 21:06:04
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 64.112.57.152 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 64.112.57.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 17:05:47.355748 2026] [security2:error] [pid 23773:tid 23773] [client 64.112.57.152:36065] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.garon.us"] [uri "/.env.prod"] [unique_id "alKwK46GgNldkAnZusmSCQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ipblock.com
2026-07-11 17:37:00
(5 days ago)
IPBlock protected site ID [4730-fr].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack