π«π·
tecnicorioja
2026-04-30 22:00:41
(2 months ago)
wp-login attack [30/Apr/2026:11:12:11
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-19 02:18:43
(4 months ago)
(mod_security) mod_security (id:243420) triggered by 144.217.135.225 (crawl-144-217-135-225.dataprov ...
show more
(mod_security) mod_security (id:243420) triggered by 144.217.135.225 (crawl-144-217-135-225.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:18:40.244712 2026] [security2:error] [pid 12675:tid 12675] [client 144.217.135.225:46551] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.goglobex.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.goglobex.com"] [uri "/contact-us.html"] [unique_id "aZZzAAb8kuXGAelE_yR7oQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨πΏ
sajmon0011
2026-02-11 08:03:01
(4 months ago)
144.217.135.225 - - [11/Feb/2026:09:03:01 +0100] "GET /robots.txt HTTP/1.1" 404 196 "-" "Mozilla/5.0 ...
show more
144.217.135.225 - - [11/Feb/2026:09:03:01 +0100] "GET /robots.txt HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
...
show less
Web App Attack
π―π΅
S.O.B.A. Dev.
2026-01-10 13:02:59
(5 months ago)
Web vulnerability scanning
Web Spam
Brute-Force
Web App Attack
πΊπΈ
S.O.B.A. Dev.
2026-01-10 13:02:59
(5 months ago)
Threat Blocked by BeeHive from (ASN:16276) (Network:OVH) (Host:soba.dev) (Method:GET) (Protocol:HTTP ...
show more
Threat Blocked by BeeHive from (ASN:16276) (Network:OVH) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-01-10T13:02:59Z)
show less
Web Spam
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-31 02:10:00
(6 months ago)
(mod_security) mod_security (id:243420) triggered by 144.217.135.225 (crawl-144-217-135-225.dataprov ...
show more
(mod_security) mod_security (id:243420) triggered by 144.217.135.225 (crawl-144-217-135-225.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 21:09:54.753026 2025] [security2:error] [pid 21222:tid 21222] [client 144.217.135.225:55265] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.trasimeno.ws|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.trasimeno.ws"] [uri "/privacy_utilizzo_cookie_it.html"] [unique_id "aVSF8uf056XT3P2Huqp-2QAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
OK
2025-11-27 23:19:03
(7 months ago)
HTTP/HTTPS
Hacking
Web App Attack
π©πͺ
Didier Lagaert
2025-11-14 08:03:49
(7 months ago)
lie-88 : Bloc AI bots=>/(Dataprovider)
Hacking
π¨π
backslash
2025-11-02 05:15:12
(7 months ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
Anonymous
2025-11-01 10:18:45
(8 months ago)
Excessive crawling/scraping
Hacking
Brute-Force
πΊπΈ
TPI-Abuse
2025-10-20 11:39:28
(8 months ago)
(mod_security) mod_security (id:243420) triggered by 144.217.135.225 (crawl-144-217-135-225.dataprov ...
show more
(mod_security) mod_security (id:243420) triggered by 144.217.135.225 (crawl-144-217-135-225.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 20 07:39:24.486160 2025] [security2:error] [pid 32404:tid 32404] [client 144.217.135.225:43965] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.makeupandwardrobe.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.makeupandwardrobe.com"] [uri "/index.htm"] [unique_id "aPYfbGVbq9AdyQmEOUjkcgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-10-16 21:17:00
(8 months ago)
Unauthorized connection attempt
Brute-Force
πΊπΈ
TPI-Abuse
2025-09-13 15:38:02
(9 months ago)
(mod_security) mod_security (id:243420) triggered by 144.217.135.225 (crawl-144-217-135-225.dataprov ...
show more
(mod_security) mod_security (id:243420) triggered by 144.217.135.225 (crawl-144-217-135-225.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 13 11:37:58.748514 2025] [security2:error] [pid 2477:tid 2477] [client 144.217.135.225:46283] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.stewhist.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.stewhist.org"] [uri "/index.html"] [unique_id "aMWP1uFsliUkX50BIJpN-AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
thesimonmanuel
2025-08-28 09:37:02
(10 months ago)
144.217.135.225 - - [28/Aug/2025:15:07:00 +0530] "GET /humans.txt HTTP/1.1" 404 50909 "-" "Mozilla/5 ...
show more
144.217.135.225 - - [28/Aug/2025:15:07:00 +0530] "GET /humans.txt HTTP/1.1" 404 50909 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" "-"
144.217.135.225 - - [28/Aug/2025:15:07:00 +0530] "GET /llms.txt HTTP/1.1" 404 50909 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" "-"
144.217.135.225 - - [28/Aug/2025:15:07:01 +0530] "GET /security.txt HTTP/1.1" 404 50909 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" "-"
144.217.135.225 - - [28/Aug/2025:15:07:01 +0530] "GET /.well-known/security.txt HTTP/1.1" 404 146 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" "-"
144.217.135.225 - - [28/Aug/2025:15:07:01 +0530] "GET /ads.txt HTTP/1.1" 404 50909 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" "-"
show less
Hacking
Web App Attack
Anonymous
2025-08-17 23:57:49
(10 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH