๐ซ๐ฎ
YF
2026-07-04 04:00:44
(2 days ago)
Attaque distribuรฉe subnet
DDoS Attack
Web App Attack
๐ฉ๐ช
piticu iuli
2026-07-02 22:01:37
(4 days ago)
(mod_security) mod_security triggered on hostname [redacted] 91.124.88.40 (AU/Australia/-)
SQL Injection
๐ฌ๐ง
consul.to
2026-07-02 16:15:21
(4 days ago)
Web attack/malicious scanning detected
Web App Attack
๐ซ๐ท
Baking333
2026-06-30 15:40:24
(6 days ago)
[redacted] 91.124.88.40 - - [30/Jun/2026:16:40:22 +0100] "GET /wp-content/themes/twentytwentythree/p ...
show more
[redacted] 91.124.88.40 - - [30/Jun/2026:16:40:22 +0100] "GET /wp-content/themes/twentytwentythree/patterns/[redacted] HTTP/1.1" 301 626 0/175 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" [redacted] 91.124.88.40 - - [30/Jun/2026:16:40:22 +0100] "GET /wp-admin/css/colors/sunrise/colors_95.php HTTP/1.1" 301 600 0/167 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 11:31:24
(1 week ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.40 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 07:31:19.507646 2026] [security2:error] [pid 3729:tid 3729] [client 91.124.88.40:37643] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||proyectomanhattan.info|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "proyectomanhattan.info"] [uri "/images/stories/themes.php"] [unique_id "akJXh20xfYXfn-QFeX1L6QAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-28 07:52:51
(1 week ago)
Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-201)
Hacking
Anonymous
2026-06-27 06:27:15
(1 week ago)
91.124.88.40 - - [27/Jun/2026:14:27:14 +0800] "GET /cgi-bin/index.php HTTP/1.1" 301 250 "-" "Mozilla ...
show more
91.124.88.40 - - [27/Jun/2026:14:27:14 +0800] "GET /cgi-bin/index.php HTTP/1.1" 301 250 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 21:28:27
(1 week ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.40 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 17:28:22.900784 2026] [security2:error] [pid 28098:tid 28098] [client 91.124.88.40:38579] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||lakesidedetectiveagency.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "lakesidedetectiveagency.com"] [uri "/images/stories/themes.php"] [unique_id "aj7u9sWM00yNGI2ViRKTBwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-26 17:01:29
(1 week ago)
Excessive 404/403 errors
Brute-Force
๐ซ๐ท
Octopuce
2026-06-26 14:06:54
(1 week ago)
Aggressive web search of vulnerable pages: /bless.php /O-Simple.php /lock360.php /zwso.php /chosen.p ...
show more
Aggressive web search of vulnerable pages: /bless.php /O-Simple.php /lock360.php /zwso.php /chosen.php /about.php /admin.php /mah.php /.wp/wso. ...
show less
Web App Attack
๐ฌ๐ง
consul.to
2026-06-25 21:18:13
(1 week ago)
Web attack/malicious scanning detected
Web App Attack
๐ฌ๐ท
setupgr
2026-06-24 19:16:45
(1 week ago)
(mod_security) mod_security (id:1000001) triggered by 91.124.88.40 (AU/Australia/South Australia/Ade ...
show more
(mod_security) mod_security (id:1000001) triggered by 91.124.88.40 (AU/Australia/South Australia/Adelaide/-/[AS137409 GSLNETWORKS-AS-AP GSL Networks Pty LTD]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 22:16:42.173035 2026] [security2:error] [pid 246441:tid 246476] [client 91.124.88.40:52307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/db.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "93"] [id "1000001"] [msg "Bad file blocked: /wp-content/plugins/linkpreview/db.php"] [severity "CRITICAL"] [tag "security"] [hostname "pankoskal.gr"] [uri "/wp-content/plugins/linkpreview/db.php"] [unique_id "ajwtGnxY7HlzXCTZPFFhMwAAAAI"]
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-23 20:30:11
(1 week ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.40 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 16:30:05.887669 2026] [security2:error] [pid 18629:tid 18629] [client 91.124.88.40:38481] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||jacquelineperriam.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "jacquelineperriam.com"] [uri "/images/stories/themes.php"] [unique_id "ajrszc0gfYiKLqfgnha9RAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-06-23 15:29:31
(1 week ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
mnsf
2026-05-27 22:06:36
(1 month ago)
Too many Status 40X (11)
Brute-Force
Web App Attack