๐บ๐ธ
TPI-Abuse
2026-07-02 08:58:47
(21 hours ago)
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 04:58:42.461453 2026] [security2:error] [pid 30480:tid 30629] [client 104.23.217.84:11112] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cargosanibel.com"] [uri "/.git/config"] [unique_id "akYoQnxo_NuGx6BseI4L0wAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
webanyone
2026-06-29 22:30:41
(3 days ago)
Apache web server attack detected by Fail2Ban in plesk-apache jail
Web App Attack
๐ฉ๐ช
webanyone
2026-06-27 18:30:38
(5 days ago)
Apache web server attack detected by Fail2Ban in plesk-apache jail
Web App Attack
Anonymous
2026-06-25 17:04:36
(1 week ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
mnsf
2026-06-19 17:06:52
(1 week ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ท๐บ
DZBOT
2026-06-19 10:21:21
(1 week ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 11:27:34
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 07:27:29.484757 2026] [security2:error] [pid 30859:tid 30859] [client 104.23.217.84:9421] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "15tobefit.starrmail.net"] [uri "/.git/config"] [unique_id "ajKEoZWCskieKRHOJPyrlAAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TNZ
2026-06-17 11:13:54
(2 weeks ago)
Automated honeypot: waf:RFI-001 | Path: /wp-admin/install.php | ISP: AS13335 Cloudflare, Inc. | ASN: ...
show more
Automated honeypot: waf:RFI-001 | Path: /wp-admin/install.php | ISP: AS13335 Cloudflare, Inc. | ASN: AS13335 Cloudflare, Inc. [PROXY] | Abuse score: 0 | Open ports: [] | UA: http://getkovamail.com/wp-admin/install.php?step=1
show less
Web App Attack
๐ฆ๐น
nomzamo
2026-06-15 05:59:41
(2 weeks ago)
Fail2Ban reported: nginx-noscript
Brute-Force
Bad Web Bot
๐ฒ๐ฝ
octageeks.com
2026-06-06 04:14:32
(3 weeks ago)
Wordpress malicious attack:[octawp]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-23 10:19:36
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 06:19:30.040257 2026] [security2:error] [pid 10053:tid 10077] [client 104.23.217.84:14305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "healingwithtouch.com.captainpurpleproductions.com"] [uri "/.git/config"] [unique_id "ahF_MsM9XXifQK4eP2NUVAAAAFA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-23 09:42:08
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 05:42:03.505447 2026] [security2:error] [pid 2032:tid 2032] [client 104.23.217.84:11833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.i4software.com"] [uri "/.git/config"] [unique_id "ahF2a4EE3YHP8KDJ8i3CBQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-05-22 07:00:05
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-17 17:56:41
(1 month ago)
104.23.217.84 - - [17/May/2026:20:56:40 +0300] "GET /wp-includes/ID3/ HTTP/1.1" 404 734 "-" "Mozilla ...
show more
104.23.217.84 - - [17/May/2026:20:56:40 +0300] "GET /wp-includes/ID3/ HTTP/1.1" 404 734 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
104.23.217.84 - - [17/May/2026:20:56:40 +0300] "GET /xmlrpc.php HTTP/1.1" 404 734 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-17 13:59:55
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.217.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 09:59:51.371383 2026] [security2:error] [pid 15429:tid 15429] [client 104.23.217.84:11470] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "limpiezadevidriosyoficinas.com"] [uri "/.git/config"] [unique_id "agnJ1_u7OEIlkoxO47AD6wAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack