Anonymous
2026-07-04 16:55:00
(5 days ago)
172.70.240.181 - - [04/Jul/2026:18:54:56 +0200] "GET /wp-includes/Text/ HTTP/1.1" 404 184 "-" "Mozil ...
show more
172.70.240.181 - - [04/Jul/2026:18:54:56 +0200] "GET /wp-includes/Text/ HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.70.240.181 - - [04/Jul/2026:18:54:56 +0200] "GET /wp-includes/Text/Diff/ HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.70.240.181 - - [04/Jul/2026:18:54:57 +0200] "GET /wp-includes/css/ HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.70.240.181 - - [04/Jul/2026:18:54:58 +0200] "GET /wp-includes/css/dist/ HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.70.240.181 - - [04/Jul/2026:18:54:59 +0200] "GET /wp-includes/fonts/ HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KH
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 06:47:01
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 02:46:50.573876 2026] [security2:error] [pid 17670:tid 17689] [client 172.70.240.181:9504] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "epsbudgetcommittee.org"] [uri "/.git/HEAD"] [unique_id "ajDxWk92xYcjZtb_sxXXwgAAABA"], referer: https://www.google.com/search?q=epsbudgetcommittee.org
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-15 08:06:32
(3 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ณ๐ด
jad-abuse
2026-06-10 21:02:31
(4 weeks ago)
ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_admin. Ob ...
show more
ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_admin. Observed by 1 sensor(s); 2 hits.
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 16:02:44
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 12:02:38.213469 2026] [security2:error] [pid 20977:tid 20982] [client 172.70.240.181:12353] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agqo.org"] [uri "/.git/config"] [unique_id "aiGhnsvWg51d2qNBceBoggAAAIE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2026-06-04 07:06:00
(1 month ago)
block ruleset bad bot: misc bad content F608233CC4C86EE814CE8DDDA9C4A0D3C79882F6
Bad Web Bot
๐บ๐ธ
mnsf
2026-06-02 15:05:05
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 11:33:43
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 07:33:39.330379 2026] [security2:error] [pid 4711:tid 4721] [client 172.70.240.181:14037] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "managementlaw.com"] [uri "/.git/config"] [unique_id "ah6_k1zvdtX47OIjYyMzwQAAAQc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 09:24:13
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 05:24:06.998649 2026] [security2:error] [pid 23372:tid 23372] [client 172.70.240.181:10531] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bvi-boat-registration.com"] [uri "/.git/config"] [unique_id "ah6hNnXnbvut1wH6ydjXCQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 06:39:40
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 02:39:37.253002 2026] [security2:error] [pid 29863:tid 29863] [client 172.70.240.181:12678] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.aeongames.com"] [uri "/.git/config"] [unique_id "ah56qbRlt_gmR3jECKMFBgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-05-20 03:39:13
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
Anonymous
2026-05-17 11:24:36
(1 month ago)
172.70.240.181 - - [17/May/2026:13:24:35 +0200] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 ...
show more
172.70.240.181 - - [17/May/2026:13:24:35 +0200] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.70.240.181 - - [17/May/2026:13:24:35 +0200] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 404 186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.70.240.181 - - [17/May/2026:13:24:35 +0200] "GET /media/wp-includes/wlwmanifest.xml HTTP/1.1" 404 186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.70.240.181 - - [17/May/2026:13:24:35 +0200] "GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1" 404 186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.70.240.181 - - [17/May/2026:13:24:35 +0200] "GET /site/wp-includes/wlwmanifest.xml HTTP/1
...
show less
Brute-Force
Web App Attack
Anonymous
2026-05-13 16:16:59
(1 month ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐ซ๐ท
Timothee Lebourdais
2026-05-12 18:47:07
(1 month ago)
[nuc] Blocked by SysWarden Firewall (Web Attack)
Hacking
Web App Attack
Port Scan
๐บ๐ธ
TPI-Abuse
2026-05-08 14:33:01
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 10:32:55.531395 2026] [security2:error] [pid 23353:tid 23353] [client 172.70.240.181:12558] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nflelectronics.com"] [uri "/.git/config"] [unique_id "af30F-TbvVF73WZ0lHgApAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack