๐บ๐ธ
TPI-Abuse
2026-07-04 05:21:59
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 01:21:50.896350 2026] [security2:error] [pid 29475:tid 29475] [client 104.28.225.122:49074] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.normsrotorservice.com"] [uri "/.git/refs/heads/main"] [unique_id "akiYbrpMTqe7_jJtIaypJQAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 03:05:11
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 23:05:04.910367 2026] [security2:error] [pid 9525:tid 9525] [client 104.28.225.122:9870] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sciencehumanitiespress.com.banis-associates.com"] [uri "/app/.env"] [unique_id "akh4YEMoVuGLSaq_wH2qpAAAACQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 17:42:13
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 13:42:05.378584 2026] [security2:error] [pid 23243:tid 23258] [client 104.28.225.122:10443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "possibilitywhisperer.teritemme.com"] [uri "/.env.production.save"] [unique_id "akf0bTSqiz-J35GzoYMhugAAAgw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 11:19:09
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 07:19:02.492288 2026] [security2:error] [pid 2544:tid 2544] [client 104.28.225.122:53896] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hayatmotifi.com.kircali.net"] [uri "/.env.development"] [unique_id "akeapkuswLLbjyVinPUNHgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
COMAITE
2026-07-03 09:32:21
(3 days ago)
Suspicious URL access.
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 08:14:22
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:14:18.031072 2026] [security2:error] [pid 6655:tid 6655] [client 104.28.225.122:32767] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "isyourcorporationsafe.com.alanmariotti.com"] [uri "/backend/.env"] [unique_id "akdvWqFpAF8WxFxTimZa5wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 07:02:38
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 03:02:31.724603 2026] [security2:error] [pid 1185:tid 1185] [client 104.28.225.122:59317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.tropicalteethwhitening.com"] [uri "/.git/refs/heads/master"] [unique_id "akdeh4Qj-E2j3WYso1L-pgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-03 06:16:15
(3 days ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 05:00:05
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.28.225.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 00:59:55.345382 2026] [security2:error] [pid 18630:tid 18630] [client 104.28.225.122:51666] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.arapi.org"] [uri "/.env.production.bak"] [unique_id "akdByw-aZCv3KjnD7kJZbwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ฎ
administrator
2026-06-18 22:13:30
(2 weeks ago)
2026-06-14 00:07:48,692 fail2ban.actions [203556]: NOTICE [apache-botsearch] Ban 104.28.225. ...
show more
2026-06-14 00:07:48,692 fail2ban.actions [203556]: NOTICE [apache-botsearch] Ban 104.28.225.122
2026-06-14 00:07:48,692 fail2ban.actions [203556]: NOTICE [apache-botsearch] Ban 104.28.225.122
...
show less
Bad Web Bot
Web Spam
Email Spam
Blog Spam
Port Scan
Brute-Force
Web App Attack
๐ฉ๐ช
SCHAPPY
2026-06-15 16:49:48
(3 weeks ago)
Mutliple attempts to access forbidden web resources, HTTP code 403.
Web App Attack
๐ธ๐ฎ
administrator
2026-06-10 22:21:14
(3 weeks ago)
2026-06-10 00:17:38,379 fail2ban.actions [1080]: NOTICE [error-bots] Ban 104.28.225.122
2026 ...
show more
2026-06-10 00:17:38,379 fail2ban.actions [1080]: NOTICE [error-bots] Ban 104.28.225.122
2026-06-10 00:17:38,742 fail2ban.actions [1080]: NOTICE [apache-botsearch] Ban 104.28.225.122
2026-06-10 00:17:38,379 fail2ban.actions [1080]: NOTICE [error-bots] Ban 104.28.225.122
2026-06-10 00:17:38,742 fail2ban.actions [1080]: NOTICE [apache-botsearch] Ban 104.28.225.122
...
show less
Bad Web Bot
Web Spam
Email Spam
Blog Spam
Port Scan
Brute-Force
Web App Attack
๐ณ๐ฑ
Savvii
2026-06-10 03:51:42
(3 weeks ago)
20 attempts against mh-misbehave-ban on guava
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
conseilgouz
2026-06-09 17:01:33
(3 weeks ago)
sce-Joomla Admin : try to force the door...
Hacking
๐จ๐ฆ
Carl
2026-05-20 10:43:40
(1 month ago)
Aggressive web scan
Hacking
Web App Attack