๐บ๐ธ
TPI-Abuse
2026-07-01 06:41:02
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 85.203.36.144 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 85.203.36.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 02:40:53.004500 2026] [security2:error] [pid 18070:tid 18099] [client 85.203.36.144:41961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "baronlongford.com"] [uri "/.env"] [unique_id "akS2dYRjIx-l6b1DOil4RAAAAEo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-18 01:10:13
(1 month ago)
Too many Status 40X (12)
Brute-Force
Web App Attack
๐จ๐ญ
backslash
2026-06-17 18:42:01
(1 month ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ฆ
URAN Publishing Service
2026-06-17 14:52:38
(1 month ago)
85.203.36.144 - - [17/Jun/2026:17:52:37 +0300] "GET /wp-content/themes/theme-check/theme-check.php H ...
show more
85.203.36.144 - - [17/Jun/2026:17:52:37 +0300] "GET /wp-content/themes/theme-check/theme-check.php HTTP/1.1" 404 716 "-" "Go-http-client/1.1"
85.203.36.144 - - [17/Jun/2026:17:52:37 +0300] "GET /wp-content/themes/Divi/404.php HTTP/1.1" 404 716 "-" "Go-http-client/1.1"
...
show less
Web App Attack
Anonymous
2026-04-08 11:37:08
(3 months ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
๐ฉ๐ช
ghostwarriors
2026-04-08 07:50:12
(3 months ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-03-27 08:05:16
(3 months ago)
Unauthorized access to webpage admin
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-16 21:00:57
(4 months ago)
(mod_security) mod_security (id:240000) triggered by 85.203.36.144 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240000) triggered by 85.203.36.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 16 17:00:51.877945 2026] [security2:error] [pid 8990:tid 8990] [client 85.203.36.144:32035] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||www.nhgrange.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.nhgrange.org"] [uri "/images/stories/themes.php"] [unique_id "abhvg-lpjozut23uVGvsvAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-16 03:38:56
(4 months ago)
(mod_security) mod_security (id:240000) triggered by 85.203.36.144 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240000) triggered by 85.203.36.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 15 23:38:49.307758 2026] [security2:error] [pid 22212:tid 22212] [client 85.203.36.144:58835] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||jbaydeliveries.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "jbaydeliveries.com"] [uri "/images/stories/themes.php"] [unique_id "abd7SV83oHSf-NuNwHZN_gAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-03-16 02:00:07
(4 months ago)
Fail2Ban apache-noscript
Bad Web Bot
๐ซ๐ท
Octopuce
2026-03-15 23:17:49
(4 months ago)
Aggressive web search of vulnerable pages: /wp-content/plugins/erinyani/ /wp-content/plugins/ioxi/io ...
show more
Aggressive web search of vulnerable pages: /wp-content/plugins/erinyani/ /wp-content/plugins/ioxi/ioxi/ /wp-includes/id3/ /blog/ /wp-content/th ...
show less
Web App Attack
๐ง๐ช
cmbplf
2026-02-28 17:32:21
(4 months ago)
5.336 requests with url.path */xmlrpc.php
Brute-Force
Bad Web Bot
๐บ๐ธ
mnsf
2026-02-10 20:05:50
(5 months ago)
Too many Status 40X (11)
Brute-Force
Web App Attack
๐จ๐ญ
backslash
2026-02-10 18:45:03
(5 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-02-03 18:53:15
(5 months ago)
(mod_security) mod_security (id:240000) triggered by 85.203.36.144 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240000) triggered by 85.203.36.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 03 13:53:10.290887 2026] [security2:error] [pid 29443:tid 29517] [client 85.203.36.144:64967] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||www.desert-automotive.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.desert-automotive.com"] [uri "/images/stories/themes.php"] [unique_id "aYJEFqf9Z4t4Pj31ljM9XQAAAIk"]
show less
Brute-Force
Bad Web Bot
Web App Attack