๐ฒ๐พ
Rizzy
2026-07-17 20:29:02
(1 day ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
Lee Daniel
2026-07-17 16:56:54
(1 day ago)
91.124.88.28 - - [17/Jul/2026:12:56:51 -0400] "GET /5PJcpMFsD8B.php HTTP/1.1" 404 5452 "http://www.s ...
show more
91.124.88.28 - - [17/Jul/2026:12:56:51 -0400] "GET /5PJcpMFsD8B.php HTTP/1.1" 404 5452 "http://www.storeallbds.com/5PJcpMFsD8B.php" "Go-http-client/2.0"
91.124.88.28 - - [17/Jul/2026:12:56:52 -0400] "GET /image/5PJcpMFsD8B.php HTTP/1.1" 404 6299 "http://www.storeallbds.com/image/5PJcpMFsD8B.php" "Go-http-client/2.0"
91.124.88.28 - - [17/Jul/2026:12:56:53 -0400] "GET /export.php HTTP/1.1" 404 5452 "http://www.storeallbds.com/export.php" "Go-http-client/2.0"
91.124.88.28 - - [17/Jul/2026:12:56:53 -0400] "GET /network_xo.php HTTP/1.1" 404 5452 "http://www.storeallbds.com/network_xo.php" "Go-http-client/2.0"
91.124.88.28 - - [17/Jul/2026:12:56:54 -0400] "GET /hplfuns.php HTTP/1.1" 404 5452 "http://www.storeallbds.com/hplfuns.php" "Go-http-client/2.0"
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
filstal.org
2026-07-16 21:23:46
(2 days ago)
Bad bot activity detected (automated scraping/probing).
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-08 05:49:10
(1 week ago)
Multiple WAF Violations
Web App Attack
๐ฌ๐ง
consul.to
2026-07-07 03:26:49
(1 week ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 22:31:56
(1 week ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.28 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 18:31:50.893959 2026] [security2:error] [pid 5649:tid 5649] [client 91.124.88.28:38599] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||ryntech.avmcyber.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "ryntech.avmcyber.com"] [uri "/images/stories/themes.php"] [unique_id "akws1iLBO3hVMFazf2brnAAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-06 17:01:04
(1 week ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-05 00:05:34
(2 weeks ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.28 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 20:05:27.210861 2026] [security2:error] [pid 21460:tid 21460] [client 91.124.88.28:27721] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||kentuckyminiaturehorsebreeders.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "kentuckyminiaturehorsebreeders.org"] [uri "/images/stories/themes.php"] [unique_id "akmfxxvRG3ug7Gfw0h4V-wAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-07-04 06:32:58
(2 weeks ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 05:00:44
(2 weeks ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.28 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 01:00:40.257328 2026] [security2:error] [pid 19096:tid 19096] [client 91.124.88.28:44117] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||majersigns.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "majersigns.com"] [uri "/images/stories/themes.php"] [unique_id "akiTeD5aLd6_WddTK5ETgQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-07-01 23:09:27
(2 weeks ago)
Web attack/malicious scanning detected
Web App Attack
Anonymous
2026-07-01 12:22:35
(2 weeks ago)
Multiple web server 400 error codes from same source ip
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-01 03:41:23
(2 weeks ago)
Excessive 404/403 errors
Brute-Force
๐ซ๐ท
Baking333
2026-06-30 15:38:44
(2 weeks ago)
[redacted] 91.124.88.28 - - [30/Jun/2026:16:38:42 +0100] "GET /wp-includes/rest-api/[redacted] HTTP/ ...
show more
[redacted] 91.124.88.28 - - [30/Jun/2026:16:38:42 +0100] "GET /wp-includes/rest-api/[redacted] HTTP/1.1" 301 578 0/172 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 91.124.88.28 - - [30/Jun/2026:16:38:43 +0100] "GET /wp-admin/user/[redacted] HTTP/1.1" 301 570 0/185 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 14:33:20
(2 weeks ago)
(mod_security) mod_security (id:240000) triggered by 91.124.88.28 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 91.124.88.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 10:33:17.128268 2026] [security2:error] [pid 20443:tid 20443] [client 91.124.88.28:52673] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||drhoss.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "drhoss.com"] [uri "/images/stories/themes.php"] [unique_id "akEwralxXzDFuTQbmUcpSgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack