๐บ๐ธ
TPI-Abuse
2026-06-22 05:16:47
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.216.119 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.216.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 01:16:39.638832 2026] [security2:error] [pid 7044:tid 7044] [client 172.70.216.119:10242] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hartflicker.com"] [uri "/.htaccess"] [unique_id "ajjFN-677cXMLmqfuv9AuAAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 08:13:00
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 172.70.216.119 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.216.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 04:12:54.003029 2026] [security2:error] [pid 8416:tid 8416] [client 172.70.216.119:13721] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||crep-psych.org|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "crep-psych.org"] [uri "/tox.ini"] [unique_id "ajOohv8J78J8EhW2vlhqCAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-24 15:19:00
(1 month ago)
Scanning for exploits.
Web App Attack
๐ฉ๐ช
paissangroup
2026-05-22 12:19:57
(1 month ago)
Multiple WAF Violations
Web App Attack
๐ณ๐ฑ
wolfemium
2026-04-16 10:15:13
(2 months ago)
172.70.216.119 - - [16/Apr/2026:13:15:12 +0300] "GET /sf.php HTTP/1.1" 502 150 "-" "-"
172.70.216.11 ...
show more
172.70.216.119 - - [16/Apr/2026:13:15:12 +0300] "GET /sf.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [16/Apr/2026:13:15:12 +0300] "GET /xozx.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [16/Apr/2026:13:15:12 +0300] "GET /clque.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [16/Apr/2026:13:15:12 +0300] "GET /albrt.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [16/Apr/2026:13:15:12 +0300] "GET /ahaoi.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [16/Apr/2026:13:15:12 +0300] "GET /bogles.php HTTP/1.1" 502 150 "-" "-"
...
show less
DDoS Attack
Anonymous
2026-04-05 00:39:03
(2 months ago)
[Sun Apr 05 02:38:54.176192 2026] [authz_core:error] [pid 6083] [client 172.70.216.119:10655] AH0163 ...
show more
[Sun Apr 05 02:38:54.176192 2026] [authz_core:error] [pid 6083] [client 172.70.216.119:10655] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Apr 05 02:38:54.760433 2026] [authz_core:error] [pid 6083] [client 172.70.216.119:10655] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sun Apr 05 02:39:02.477345 2026] [authz_core:error] [pid 5575] [client 172.70.216.119:10280] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
Anonymous
2026-04-03 04:02:07
(2 months ago)
[Fri Apr 03 06:02:05.108320 2026] [authz_core:error] [pid 5763] [client 172.70.216.119:13387] AH0163 ...
show more
[Fri Apr 03 06:02:05.108320 2026] [authz_core:error] [pid 5763] [client 172.70.216.119:13387] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Apr 03 06:02:05.377446 2026] [authz_core:error] [pid 5763] [client 172.70.216.119:13387] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Apr 03 06:02:06.492457 2026] [authz_core:error] [pid 5763] [client 172.70.216.119:13387] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐ณ๐ฑ
wolfemium
2026-03-03 00:58:05
(3 months ago)
172.70.216.119 - - [03/Mar/2026:02:58:05 +0200] "GET /file61.php HTTP/1.1" 502 150 "-" "-"
172.70.21 ...
show more
172.70.216.119 - - [03/Mar/2026:02:58:05 +0200] "GET /file61.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [03/Mar/2026:02:58:05 +0200] "GET /eee.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [03/Mar/2026:02:58:05 +0200] "GET /swallowable.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [03/Mar/2026:02:58:05 +0200] "GET //dox.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [03/Mar/2026:02:58:05 +0200] "GET //qwas.php HTTP/1.1" 502 150 "-" "-"
172.70.216.119 - - [03/Mar/2026:02:58:05 +0200] "GET /claw.php HTTP/1.1" 502 150 "-" "-"
...
show less
DDoS Attack
๐จ๐ญ
SOC [GOLINE SA]
2026-02-28 17:02:24
(4 months ago)
FortiGate detected IPS attack from IPv4 address 172.70.216.119
Hacking
๐จ๐ญ
SOC [GOLINE SA]
2026-02-27 16:03:25
(4 months ago)
FortiGate detected IPS attack from IPv4 address 172.70.216.119
Hacking
๐จ๐ญ
SOC [GOLINE SA]
2026-02-26 15:03:23
(4 months ago)
FortiGate detected IPS attack from IPv4 address 172.70.216.119
Hacking
๐จ๐ญ
SOC [GOLINE SA]
2026-02-25 15:02:06
(4 months ago)
FortiGate detected IPS attack from IPv4 address 172.70.216.119
Hacking
๐จ๐ญ
SOC [GOLINE SA]
2026-02-24 14:05:26
(4 months ago)
FortiGate detected IPS attack from IPv4 address 172.70.216.119
Hacking
๐บ๐ฆ
URAN Publishing Service
2026-02-18 14:05:31
(4 months ago)
172.70.216.119 - - [18/Feb/2026:16:05:27 +0200] "GET /wp-admin/maint/maint.php HTTP/1.1" 404 196 "-" ...
show more
172.70.216.119 - - [18/Feb/2026:16:05:27 +0200] "GET /wp-admin/maint/maint.php HTTP/1.1" 404 196 "-" "-"
172.70.216.119 - - [18/Feb/2026:16:05:30 +0200] "GET /wp-admin/css/wp-conflg.php?p= HTTP/1.1" 404 196 "-" "-"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-02-02 16:26:38
(4 months ago)
172.70.216.119 - - [02/Feb/2026:18:26:23 +0200] "GET //wp-content/themes/seotheme/mar.php HTTP/1.1" ...
show more
172.70.216.119 - - [02/Feb/2026:18:26:23 +0200] "GET //wp-content/themes/seotheme/mar.php HTTP/1.1" 404 196 "-" "-"
172.70.216.119 - - [02/Feb/2026:18:26:37 +0200] "GET //wp-content/ HTTP/1.1" 404 196 "-" "-"
...
show less
Web App Attack