This IP address has been reported a total of
653
times from
184 distinct
sources.
104.168.28.15 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
[WedJul0814:00:43.7527572026][security2:error][pid2702428:tid2702520][client104.168.28.15:0]ModSecur ...
show more[WedJul0814:00:43.7527572026][security2:error][pid2702428:tid2702520][client104.168.28.15:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"aexthesya.ch\"][uri\"/favicon.svg\"][unique_id\"ak4766_mwFcGKLxxjNWJtwAAAJg\"]
show less
Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 15.28.168.104.rbl.malwa ...
show moreMalware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 15.28.168.104.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-mnz6-3)
show less
CounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked hon ...
show moreCounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked honeytoken infrastructure subdomain). Trapped in honeypot. Concurrency hits: 6. Bandwidth drained: 0.02 MB.
show less
CounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked hon ...
show moreCounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked honeytoken infrastructure subdomain). Trapped in honeypot. Concurrency hits: 6. Bandwidth drained: 0.02 MB.
show less
[FriJul0320:39:23.2136692026][security2:error][pid478804:tid478927][client104.168.28.15:0]ModSecurit ...
show more[FriJul0320:39:23.2136692026][security2:error][pid478804:tid478927][client104.168.28.15:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.nuovacooperazione.maxay.ch\"][uri\"/\"][unique_id\"akgB2-H9NM5U5QuYQ8rvUAAAAQg\"]
show less
CounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked hon ...
show moreCounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked honeytoken infrastructure subdomain). Trapped in honeypot. Concurrency hits: 6. Bandwidth drained: 0.02 MB.
show less
Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 15.28.168.104.rbl.malwa ...
show moreMalware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 15.28.168.104.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-mnz6-3)
show less
CounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked hon ...
show moreCounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked honeytoken infrastructure subdomain). Trapped in honeypot. Concurrency hits: 6. Bandwidth drained: 0.02 MB.
show less