๐ฆ๐บ
afleventoffice.com.au
2025-08-25 04:10:02
(10 months ago)
HEAD /files.zip HTTP/1.1
Web App Attack
๐ณ๐ฟ
Tripwire
2025-08-21 17:46:42
(10 months ago)
Scanning for backup files
Web App Attack
๐ฌ๐ง
[email protected]
2025-08-14 12:15:53
(11 months ago)
r2d2.e-learndesign.scot:80 82.165.85.135 - - [14/Aug/2025:12:15:53 +0000] "HEAD /backup.zip HTTP/1.1 ...
show more
r2d2.e-learndesign.scot:80 82.165.85.135 - - [14/Aug/2025:12:15:53 +0000] "HEAD /backup.zip HTTP/1.1" 404 205 "-" "-"
r2d2.e-learndesign.scot:80 82.165.85.135 - - [14/Aug/2025:12:15:53 +0000] "HEAD /Archive.zip HTTP/1.1" 404 205 "-" "-"
r2d2.e-learndesign.scot:80 82.165.85.135 - - [14/Aug/2025:12:15:53 +0000] "HEAD /girlingandfraser.zip HTTP/1.1" 404 205 "-" "-"
...
show less
Web App Attack
๐ฉ๐ช
David Ferneding
2025-08-09 03:08:20
(11 months ago)
Blocked by UFW (TCP on 80)
Source port: 34444
TTL: 53
Packet length: 60
TOS: 0x00
This report (for ...
show more
Blocked by UFW (TCP on 80)
Source port: 34444
TTL: 53
Packet length: 60
TOS: 0x00
This report (for 82.165.85.135) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
Web App Attack
Anonymous
2025-08-02 04:51:36
(11 months ago)
Attempting to access restricted files
Hacking
Brute-Force
Web App Attack
Anonymous
2025-08-02 04:35:57
(11 months ago)
Account archive download attempts
Hacking
Brute-Force
๐ณ๐ฑ
MM-bot
2025-07-31 05:24:23
(11 months ago)
URL-probe: HTTP/2 HEAD request on /backup.zip (2025-07-31 07:24:23 UTC+2)
Hacking
Web App Attack
๐บ๐ธ
SiliSoftware
2025-07-29 03:04:47
(11 months ago)
/backup.zip
Web App Attack
๐ฉ๐ช
FeG Deutschland
2025-07-22 09:56:49
(11 months ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 24
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-19 07:05:58
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 03:05:51.005750 2025] [security2:error] [pid 8066:tid 8201] [client 82.165.85.135:59480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ecothermtech.com"] [uri "/wp-config.php_orig"] [unique_id "aHtDz7bzLVN-V8F-oH7s7wAAAg0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-18 21:55:56
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 17:55:52.127318 2025] [security2:error] [pid 8736:tid 8736] [client 82.165.85.135:56908] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wardellbrown.com"] [uri "/wp-config.php_orig"] [unique_id "aHrC6KwtpnT4oDoqGuuZmQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-18 13:55:31
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 09:55:24.354875 2025] [security2:error] [pid 14479:tid 14479] [client 82.165.85.135:54842] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-dataph.com"] [uri "/wp-config.php1"] [unique_id "aHpSTNVhYlK6BEqwzaHfAwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-18 02:29:23
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 22:29:16.649559 2025] [security2:error] [pid 32341:tid 32341] [client 82.165.85.135:38614] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fredlandia.com"] [uri "/wp-config.php.old"] [unique_id "aHmxfHmqj8A7PierHWo8ugAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-17 20:13:06
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 16:13:00.587150 2025] [security2:error] [pid 6092:tid 6109] [client 82.165.85.135:50458] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kaukabsiddique.net"] [uri "/wp-config.php.old"] [unique_id "aHlZTP1NWBY77-w7Ir0IUgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-17 07:17:28
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.85.135 (infong-es198.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 03:17:23.714120 2025] [security2:error] [pid 30174:tid 30174] [client 82.165.85.135:58514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beercanisland.com"] [uri "/wp-config.php1"] [unique_id "aHijg_ajXze5l8wt0YqtxQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack