๐บ๐ธ
TPI-Abuse
2026-07-02 15:02:03
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:01:59.538812 2026] [security2:error] [pid 12284:tid 12284] [client 172.70.240.175:14216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "studioarmanni.com"] [uri "/.git/config"] [unique_id "akZ9Z5WyelCHwwGvae_RtwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-01 04:32:56
(1 day ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐บ๐ธ
johnkarlhill
2026-06-24 16:43:06
(1 week ago)
WebKnight blocked malicious web request on johnkarlhill.com
Brute-Force
SSH
๐ฉ๐ช
strxmpp
2026-06-21 08:40:51
(1 week ago)
172.70.240.175 - - [21/Jun/2026:10:40:50 +0200] "GET /config.yaml HTTP/1.1" 404 5849 "-" "Mozilla/5. ...
show more
172.70.240.175 - - [21/Jun/2026:10:40:50 +0200] "GET /config.yaml HTTP/1.1" 404 5849 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
...
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-20 23:42:10
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 19:42:07.592613 2026] [security2:error] [pid 27454:tid 27454] [client 172.70.240.175:12888] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.blackhillsinfosec.org.mphq.net"] [uri "/.env.dist"] [unique_id "ajclTxLgT92BgCzaZF7XIAAAAAI"], referer: https://www.google.com/search?q=www.blackhillsinfosec.org.mphq.net
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 05:26:31
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 01:26:26.179223 2026] [security2:error] [pid 11251:tid 11251] [client 172.70.240.175:12477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "joshuarawlings.com"] [uri "/.git/config"] [unique_id "ajDegvUJHx4y8ckLYbqXmAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-15 13:47:15
(2 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ฉ๐ช
Blexyel
2026-06-07 03:15:48
(3 weeks ago)
172.70.240.175 - - [07/Jun/2026:05:15:47 +0200] "GET /.git/config HTTP/1.1" 404 120 "-" "Mozilla/5.0 ...
show more
172.70.240.175 - - [07/Jun/2026:05:15:47 +0200] "GET /.git/config HTTP/1.1" 404 120 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/127.0 Safari/537.36"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 04:37:24
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 00:37:19.656568 2026] [security2:error] [pid 22349:tid 22349] [client 172.70.240.175:10110] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elisalouis.org"] [uri "/.git/config"] [unique_id "aiJSfxW8PrR8qJ5xia4GqQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-04 04:05:13
(4 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 14:48:53
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 10:48:45.631443 2026] [security2:error] [pid 30874:tid 30874] [client 172.70.240.175:12435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twincitytn.com"] [uri "/.git/config"] [unique_id "ah7tTc0WLHJM4WLY_WUReQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 10:04:05
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 06:03:57.625474 2026] [security2:error] [pid 19003:tid 19024] [client 172.70.240.175:9961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "businessbasicsinstitute.com"] [uri "/.git/config"] [unique_id "ah6qjbRpTuiZsSew-SFwaAAAAEg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Blexyel
2026-05-30 14:56:28
(1 month ago)
172.70.240.175 - - [30/May/2026:16:56:28 +0200] "GET /.git/config HTTP/1.1" 404 22 "-" "curl/8.4.0" ...
show more
172.70.240.175 - - [30/May/2026:16:56:28 +0200] "GET /.git/config HTTP/1.1" 404 22 "-" "curl/8.4.0" "api.neko.fomx.gay"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-29 11:41:10
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 07:41:06.585237 2026] [security2:error] [pid 17292:tid 17306] [client 172.70.240.175:10008] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.priyom.us"] [uri "/.env.production"] [unique_id "ahl7Umh57-Mngulgnb1rsgAAAMw"], referer: https://www.google.com/search?q=cpcalendars.priyom.us
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-05-26 06:49:00
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack