πΊπΈ
TPI-Abuse
2026-07-01 10:27:41
(13 hours ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.8 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 06:27:36.965931 2026] [security2:error] [pid 13304:tid 13304] [client 91.124.88.8:40011] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||roadtosalvation.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "roadtosalvation.org"] [uri "/images/stories/themes.php"] [unique_id "akTrmCaksIirUlTmyqfgcQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Baking333
2026-06-30 15:36:45
(1 day ago)
[redacted] 91.124.88.8 - - [30/Jun/2026:16:36:43 +0100] "GET /wp-includes/style-engine/[redacted] HT ...
show more
[redacted] 91.124.88.8 - - [30/Jun/2026:16:36:43 +0100] "GET /wp-includes/style-engine/[redacted] HTTP/1.1" 301 590 0/128 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 91.124.88.8 - - [30/Jun/2026:16:36:44 +0100] "GET /wp-admin/images/[redacted] HTTP/1.1" 301 576 0/155 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0"
show less
Bad Web Bot
Web App Attack
π³π±
Site.eu
2026-06-29 09:09:46
(2 days ago)
Excessive 404/403 errors
Brute-Force
πΊπΈ
TPI-Abuse
2026-06-29 00:24:41
(2 days ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.8 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 20:24:37.605547 2026] [security2:error] [pid 17585:tid 17585] [client 91.124.88.8:27121] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||johnpratt.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "johnpratt.net"] [uri "/images/stories/themes.php"] [unique_id "akG7RV85y-kcJpzD19xKPwAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-27 18:04:40
(4 days ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.8 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 14:04:35.577196 2026] [security2:error] [pid 31871:tid 31929] [client 91.124.88.8:53169] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||ayubhamdardfoundation.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "ayubhamdardfoundation.org"] [uri "/images/stories/themes.php"] [unique_id "akAQszEmAkaTzcgKC6vb-wAAAIA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Octopuce
2026-06-26 23:43:22
(4 days ago)
Aggressive web search of vulnerable pages: /update/ /themes/zMousse/ /wp-content/plugins/ubh/ /wp-co ...
show more
Aggressive web search of vulnerable pages: /update/ /themes/zMousse/ /wp-content/plugins/ubh/ /wp-content/plugins/seoplugins/ /wp-content/theme ...
show less
Web App Attack
π³πΏ
Antinson
2026-06-25 01:00:36
(6 days ago)
Scraping with a high error ratio and request rate
Bad Web Bot
π«π·
masterguru
2026-06-25 00:42:29
(6 days ago)
Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-197)
Hacking
π¬π§
consul.to
2026-06-24 20:48:45
(1 week ago)
Web attack/malicious scanning detected
Web App Attack
πΊπΈ
integrantservices.com
2026-06-24 03:59:41
(1 week ago)
(wordpress) Failed wordpress login from 91.124.88.8 (AU/Australia/-)
Brute-Force
π¬π§
consul.to
2026-06-23 15:28:53
(1 week ago)
Web attack/malicious scanning detected
Web App Attack
Anonymous
2026-05-14 04:13:55
(1 month ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
π«π·
Octopuce
2026-05-09 16:54:20
(1 month ago)
Aggressive web search of vulnerable pages: /wp-includes/css/chosen.php /wp-includes/Text/Diff/Render ...
show more
Aggressive web search of vulnerable pages: /wp-includes/css/chosen.php /wp-includes/Text/Diff/Renderer/about.php /wp-admin/css/colors/light/abo ...
show less
Web App Attack
Anonymous
2026-05-05 15:01:04
(1 month ago)
[redacted] 91.124.88.8 - - [05/May/2026:17:00:53 +0200] "GET /wp-content/plugins/pwnd-1/admin.php HT ...
show more
[redacted] 91.124.88.8 - - [05/May/2026:17:00:53 +0200] "GET /wp-content/plugins/pwnd-1/admin.php HTTP/1.1" 404 1873 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
[redacted] 91.124.88.8 - - [05/May/2026:17:00:54 +0200] "GET /wp-admin/shell20211028.php HTTP/1.1" 404 1873 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36"
[redacted] 91.124.88.8 - - [05/May/2026:17:00:56 +0200] "GET /wp-admin/images/admin.php HTTP/1.1" 404 1873 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36"
[redacted] 91.124.88.8 - - [05/May/2026:17:00:59 +0200] "GET /wp-admin/chosen.php HTTP/1.1" 404 1873 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0"
[redacted] 91.124.88.8 - - [05/May/2026:17:01:00 +0200] "GET /images/admin.php HTTP/1.1" 404 1873 "-" "Mozilla/5.0 (Wind
...
show less
Hacking
Web App Attack
π«π·
masterguru
2026-03-22 01:28:07
(3 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-135)
show less
Bad Web Bot