๐ท๐บ
DZBOT
2026-07-09 07:31:17
(2 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ณ๐ด
jad-abuse
2026-07-09 04:42:55
(2 days ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_admin. ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_admin. Observed by 1 sensor(s); 1 hits.
show less
Brute-Force
Web App Attack
๐ซ๐ท
Pays d'Angoulรชme
2026-07-08 02:50:47
(3 days ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/core/install.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 18:46:46
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 14:46:42.602045 2026] [security2:error] [pid 25876:tid 25876] [client 104.23.223.117:12901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sdwsk8.com"] [uri "/.git/config"] [unique_id "akayEncltVllKZkQOQJe2gAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 17:31:43
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 13:31:35.050388 2026] [security2:error] [pid 2852:tid 2852] [client 104.23.223.117:11662] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thelotsmokehouse.com"] [uri "/.git/config"] [unique_id "akagd31qYB9ZzpxG2G70SAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 04:41:36
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:41:30.465679 2026] [security2:error] [pid 2979:tid 2979] [client 104.23.223.117:13676] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sscsco.com"] [uri "/.git/config"] [unique_id "akXr-sVyW3ScyVa9DeakwgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
pinguin
2026-07-02 03:36:52
(1 week ago)
Triggered Cloudflare WAF (firewallManaged) from SE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from SE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: //goods.php
UA: Empty string
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-27 18:17:25
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 14:17:18.840095 2026] [security2:error] [pid 9660:tid 9660] [client 104.23.223.117:13729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "luxepups.net"] [uri "/.git/config"] [unique_id "akATrjhEvU1P5dFCqDs0nQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
alferez
2026-06-21 09:06:18
(2 weeks ago)
Multiple WP Login Attack
Hacking
Exploited Host
Web App Attack
๐ท๐บ
DZBOT
2026-06-15 06:39:32
(3 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ณ๐ฟ
Tripwire
2026-06-09 06:38:32
(1 month ago)
Fake ChatGPT bot "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ChatGPT-User/1.0; + ...
show more
Fake ChatGPT bot "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ChatGPT-User/1.0; +https://openai.com/bot)"
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-08 22:12:19
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 18:12:14.222939 2026] [security2:error] [pid 25654:tid 25669] [client 104.23.223.117:12663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ianajewellery.iancaird.com"] [uri "/.git/config"] [unique_id "aic-PsSBIRAs8KoYqZCJXgAAAM0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
COMPLEX
2026-05-29 00:49:08
(1 month ago)
Unsolicited TCP traffic | Action: DROP | Port 443
Phishing
๐จ๐ญ
backslash
2026-05-24 10:06:03
(1 month ago)
block ruleset bad bot: misc bad content F608233CC4C86EE814CE8DDDA9C4A0D3C79882F6
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-05-24 08:50:46
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 04:50:41.991036 2026] [security2:error] [pid 20604:tid 20604] [client 104.23.223.117:13204] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "joy.joebankx.com"] [uri "/.git/config"] [unique_id "ahK74RcRvY1xAUrtH4ku1wAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack