๐บ๐ธ
chrisj
2026-07-01 19:16:30
(2 days ago)
[Wed Jul 01 19:16:28.495401 2026] [proxy_fcgi:error] [pid 444700:tid 444737] [remote 104.22.1.193:11 ...
show more
[Wed Jul 01 19:16:28.495401 2026] [proxy_fcgi:error] [pid 444700:tid 444737] [remote 104.22.1.193:11079] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 19:16:28.973380 2026] [proxy_fcgi:error] [pid 444700:tid 444734] [remote 104.22.1.193:11079] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 19:16:29.245243 2026] [proxy_fcgi:error] [pid 444700:tid 444735] [remote 104.22.1.193:11079] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
Anonymous
2026-06-27 08:15:04
(6 days ago)
(caddyscan) Scanner path probe from 104.22.1.193 (US/United States/-): 5 in the last 3600 secs; Port ...
show more
(caddyscan) Scanner path probe from 104.22.1.193 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 104.22.1.193 - - [27/Jun/2026:08:14:59 +0000] "GET /crm/.env HTTP/1.1"
[REDACTED] 200 2627 104.22.1.193 - - [27/Jun/2026:08:14:59 +0000] "GET /shop/.env HTTP/1.1"
[REDACTED] 200 2627 104.22.1.193 - - [27/Jun/2026:08:14:59 +0000] "GET /client/.env HTTP/1.1"
[REDACTED] 200 2627 104.22.1.193 - - [27/Jun/2026:08:14:59 +0000] "GET /project/.env HTTP/1.1"
[REDACTED] 200 2627 104.22.1.193 - - [27/Jun/2026:08:15:02 +0000] "GET /cronlab/.env HTTP/1.1"
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-25 02:19:52
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 104.22.1.193 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 104.22.1.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 22:19:45.518804 2026] [security2:error] [pid 26911:tid 26911] [client 104.22.1.193:11892] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ticmacabotours.com.disenowebprofesional.com"] [uri "/.git/config"] [unique_id "ajyQQU0ILaZQFhrVirrBYQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 07:44:54
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 104.22.1.193 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 104.22.1.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 03:44:21.597431 2026] [security2:error] [pid 21857:tid 21899] [client 104.22.1.193:13739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.powercoupling.pwrcoupling.com"] [uri "/.env.production"] [unique_id "ajeWVVK4Qu2hCw--mJN8KwAAARQ"], referer: https://www.google.com/search?q=www.powercoupling.pwrcoupling.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2026-06-20 02:27:00
(1 week ago)
block ruleset bad bot: misc bad content F608233CC4C86EE814CE8DDDA9C4A0D3C79882F6
Bad Web Bot
๐บ๐ธ
mnsf
2026-06-19 05:05:46
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-16 21:59:04
(2 weeks ago)
Auto-ban: >3000 req/min op 2026-06-16
Web App Attack
SSH
Hacking
๐ฏ๐ต
S.O.B.A. Dev.
2026-06-10 17:05:52
(3 weeks ago)
Persistent port scanning or vulnerability scanning
Port Scan
๐ฒ๐ฝ
octageeks.com
2026-06-05 04:14:53
(4 weeks ago)
Wordpress malicious attack:[octawp]
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-04-20 22:18:11
(2 months ago)
ThreatBook Intelligence: Whitelist,cdn more details on https://threatbook.io/ip/104.22.1.193
2026-04 ...
show more
ThreatBook Intelligence: Whitelist,cdn more details on https://threatbook.io/ip/104.22.1.193
2026-04-20 23:14:12 /aad7
show less
Web App Attack
๐ฆ๐บ
oncord
2026-04-16 02:03:54
(2 months ago)
Form spam
Web Spam
๐บ๐ธ
myagent.site
2026-03-24 11:53:17
(3 months ago)
Blocking for trying to access an exploit file: /.env.container
Hacking
๐ฆ๐บ
oncord
2026-03-06 16:58:26
(3 months ago)
Form spam
Web Spam
๐ช๐ธ
el-brujo
2026-02-22 00:30:13
(4 months ago)
22/Feb/2026:01:30:12.520788 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ...
show more
22/Feb/2026:01:30:12.520788 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 104.22.1.193] ModSecurity: Warning. Pattern match "(?i)(?:\\\\\\\\W|^)(?:javascript:(?:[\\\\\\\\s\\\\\\\\S]+[=\\\\\\\\\\\\\\\\(\\\\\\\\[\\\\\\\\.<]|[\\\\\\\\s\\\\\\\\S]*?(?:\\\\\\\\bname\\\\\\\\b|\\\\\\\\[ux]\\\\\\\\d))|data:(?:(?:[a-z]\\\\\\\\w+\\\\\\\\/\\\\\\\\w[\\\\\\\\w+-]+\\\\\\\\w)?[;,]|[\\\\\\\\s\\\\\\\\S]*?;[\\\\\\\\s\\\\\\\\S]*?\\\\\\\\b(?:base64|charset=)|[\\\\\\\\s\\\\\\\\S]*?,[\\\\\\\\s\\\\\\\\S]*?<[\\\\\\\\s\\\\\\\\S]*?\\\\\\\\w[\\\\\\\\s\\\\\\\\S]*?>))|@\\\\\\\\W*?i\\\\\\\\W*?m\\\\\\\\W*?p\\\\\\\\W*? ..." at REQUEST_HEADERS:Referer. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf"] [line "225"] [id "941170"] [msg "NoScript XSS InjectionChecker: Attribute Injection"] [data "Matched Data: \\\\x22javascript:'< found within REQUEST_HEADERS:Referer: https://el-hacker.org/\\\\x22javascript:'<html"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.
...
show less
Hacking
Web App Attack
๐ฌ๐ท
ggb_st
2026-01-05 19:23:01
(5 months ago)
[Mon Jan 05 21:22:58.566816 2026] [access_compat:error] [pid 3164165:tid 3164165] [client 104.22.1.1 ...
show more
[Mon Jan 05 21:22:58.566816 2026] [access_compat:error] [pid 3164165:tid 3164165] [client 104.22.1.193:32327] AH01797: client denied by server configuration: /home/gogo/mounts/VSCODE_SRV_HDD/WEBSITE_ROOT/DOCROOT/dmousigang/ends/FILE_SHARE/pidoras4/3ab3bd77c1d377021defa8e75be38f79b78a5339b5b9732ce6343410d63421dc.mp4
[Mon Jan 05 21:22:58.566943 2026] [access_compat:error] [pid 3164165:tid 3164165] [client 104.22.1.193:32327] AH01797: client denied by server configuration: /home/gogo/mounts/VSCODE_SRV_HDD/WEBSITE_ROOT/DOCROOT/dmousigang/error403.html
[Mon Jan 05 21:22:59.013468 2026] [access_compat:error] [pid 3164165:tid 3164165] [client 104.22.1.193:32327] AH01797: client denied by server configuration: /home/gogo/mounts/VSCODE_SRV_HDD/WEBSITE_ROOT/DOCROOT/dmousigang/ends/FILE_SHARE/pidoras4/3ab3bd77c1d377021defa8e75be38f79b78a5339b5b9732ce6343410d63421dc.mp4
[Mon Jan 05 21:22:59.013587 2026] [access_compat:error] [pid 3164165:tid 3164165] [client 104.22.1.193:32327] AH01797: client den
...
show less
Hacking
Brute-Force
Bad Web Bot
Web App Attack