๐ณ๐ฟ
Antinson
2026-07-14 03:42:02
(1 day ago)
Scraping with a high error ratio and request rate
Bad Web Bot
Anonymous
2026-07-13 23:10:04
(1 day ago)
| [Dangerous/Ghana] Aggressive IP 5.180.179.9 (~30 hits). Type: DoS Defender- Web server 400 error c ...
show more
| [Dangerous/Ghana] Aggressive IP 5.180.179.9 (~30 hits). Type: DoS Defender- Web server 400 error code
show less
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-13 08:27:27
(1 day ago)
(mod_security) mod_security (id:240000) triggered by 5.180.179.9 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240000) triggered by 5.180.179.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 04:27:20.125970 2026] [security2:error] [pid 21362:tid 21362] [client 5.180.179.9:57601] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||fashionmenswear.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "fashionmenswear.com"] [uri "/images/stories/themes.php"] [unique_id "alShaNJi80eE6UrqEff9iQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-12 23:37:45
(2 days ago)
391 requests with url.path */.well-known/acme-challenge/*.php
320 requests with url.path */.well-k ...
show more
391 requests with url.path */.well-known/acme-challenge/*.php
320 requests with url.path */.well-known/pki-validation/*.php
show less
Brute-Force
Bad Web Bot
๐ซ๐ท
dynamix
2026-02-25 22:38:39
(4 months ago)
Multiple WAF Violations
Web App Attack
๐ฌ๐ง
consul.to
2026-02-25 17:31:30
(4 months ago)
Web attack/malicious scanning detected
Web App Attack
๐ฌ๐ง
Swiptly
2026-02-25 16:09:56
(4 months ago)
Excessive 403/404/405 PHP/CMS errors from scanning or broken bots
...
Web App Attack
๐ณ๐ฟ
Antinson
2026-02-25 08:26:57
(4 months ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-02-24 06:15:18
(4 months ago)
(mod_security) mod_security (id:240000) triggered by 5.180.179.9 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240000) triggered by 5.180.179.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 01:15:12.473271 2026] [security2:error] [pid 23149:tid 23149] [client 5.180.179.9:37059] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||tavo.info|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "tavo.info"] [uri "/images/stories/themes.php"] [unique_id "aZ1B8NymnV5rGATSP_eqFwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-02-24 02:49:13
(4 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-24 02:25:48
(4 months ago)
(mod_security) mod_security (id:240000) triggered by 5.180.179.9 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240000) triggered by 5.180.179.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 21:25:43.591129 2026] [security2:error] [pid 28608:tid 28608] [client 5.180.179.9:47221] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||accentcorporatemedia.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "accentcorporatemedia.com"] [uri "/images/stories/themes.php"] [unique_id "aZ0MJzkkGrFiuqqsJc4mWgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-02-24 00:52:00
(4 months ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-22 22:27:23
(4 months ago)
(mod_security) mod_security (id:240000) triggered by 5.180.179.9 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240000) triggered by 5.180.179.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 17:27:19.429981 2026] [security2:error] [pid 22354:tid 22354] [client 5.180.179.9:32339] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||wildcroc.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "wildcroc.us"] [uri "/images/stories/themes.php"] [unique_id "aZuCx_jRZV4p3PzDgr_x2gAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-02-22 05:36:57
(4 months ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
myagent.site
2026-02-22 04:35:03
(4 months ago)
Blocking for trying to access an exploit file: /manager.php
Hacking