๐ฉ๐ช
FeG Deutschland
2026-07-07 11:25:56
(5 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 23:28:50
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 212.30.37.98 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 212.30.37.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 19:28:47.115916 2026] [security2:error] [pid 23105:tid 23105] [client 212.30.37.98:41053] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kaylamaclaincounseling.com"] [uri "/.git/HEAD"] [unique_id "aiC4r04lcH35rg40BbNODQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
demonsword
2026-05-28 11:04:31
(1 month ago)
Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ...
show more
Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: api.ipvanish.com:443
show less
Open Proxy
Port Scan
๐บ๐ธ
ipblock.com
2026-05-26 17:41:00
(1 month ago)
IPBlock protected site ID [2815-wdn][s=02].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-05-24 16:01:50
(1 month ago)
Excessive 404/403 errors
Brute-Force
Anonymous
2026-05-24 11:05:52
(1 month ago)
Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=58
Hacking
๐ฌ๐ง
consul.to
2026-05-24 09:47:00
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
Rayulcifer
2026-05-19 22:32:01
(1 month ago)
212.30.37.98 - - [19/May/2026:17:31:55 -0500] "GET //components/com_b2jcontact/izoc.php HTTP/1.1" 30 ...
show more
212.30.37.98 - - [19/May/2026:17:31:55 -0500] "GET //components/com_b2jcontact/izoc.php HTTP/1.1" 301 493 "-" "Go-http-client/1.1"
212.30.37.98 - - [19/May/2026:17:31:56 -0500] "GET //libraries/joomla/index.php HTTP/1.1" 301 477 "-" "Go-http-client/1.1"
212.30.37.98 - - [19/May/2026:17:31:58 -0500] "GET //templates/Hoxa/error.php HTTP/1.1" 301 473 "-" "Go-http-client/1.1"
212.30.37.98 - - [19/May/2026:17:31:59 -0500] "GET //wp-content/plugins/age-restriction/modules/remote_support/remote_init.php HTTP/1.1" 301 571 "-" "Go-http-client/1.1"
212.30.37.98 - - [19/May/2026:17:32:00 -0500] "GET //templates/Cassiopeia/error.php HTTP/1.1" 301 485 "-" "Go-http-client/1.1"
...
show less
Open Proxy
Port Scan
Hacking
Web App Attack
SSH
๐บ๐ธ
TPI-Abuse
2026-05-17 19:50:39
(1 month ago)
(mod_security) mod_security (id:240000) triggered by 212.30.37.98 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 212.30.37.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 15:50:31.929069 2026] [security2:error] [pid 23428:tid 23428] [client 212.30.37.98:52009] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||normteslaa.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "normteslaa.com"] [uri "/images/stories/themes.php"] [unique_id "agocB3RAfq06rCXTBkRIhwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
Anytech
2026-05-17 14:13:47
(1 month ago)
Blocked by Conn-Monitor: Automated bot activity
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-05-17 01:00:52
(1 month ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ฆ
URAN Publishing Service
2026-05-11 23:21:27
(2 months ago)
212.30.37.98 - - [12/May/2026:02:21:26 +0300] "GET /wp-content/plugins/schema/yanz.php HTTP/1.1" 404 ...
show more
212.30.37.98 - - [12/May/2026:02:21:26 +0300] "GET /wp-content/plugins/schema/yanz.php HTTP/1.1" 404 717 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-11 16:43:19
(2 months ago)
212.30.37.98 - - [11/May/2026:19:43:17 +0300] "GET /wp-includes/IXR/index.php HTTP/1.1" 404 3291 "ht ...
show more
212.30.37.98 - - [11/May/2026:19:43:17 +0300] "GET /wp-includes/IXR/index.php HTTP/1.1" 404 3291 "http://vakp.nlu.edu.ua/wp-includes/IXR/index.php" "Go-http-client/1.1"
212.30.37.98 - - [11/May/2026:19:43:18 +0300] "GET /wp-includes/ID3/index.php HTTP/1.1" 404 729 "http://vakp.nlu.edu.ua/wp-includes/ID3/index.php" "Go-http-client/1.1"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-02 14:51:13
(2 months ago)
212.30.37.98 - - [02/May/2026:17:51:04 +0300] "GET /wp-content/themes/admin.php HTTP/1.1" 404 716 "- ...
show more
212.30.37.98 - - [02/May/2026:17:51:04 +0300] "GET /wp-content/themes/admin.php HTTP/1.1" 404 716 "-" "Go-http-client/1.1"
212.30.37.98 - - [02/May/2026:17:51:13 +0300] "GET /wp-admin/images/index.php HTTP/1.1" 404 716 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐ณ๐ฟ
Antinson
2026-04-29 22:22:59
(2 months ago)
Scraping with a high error ratio and request rate
Bad Web Bot