๐บ๐ธ
mawan
2026-07-09 04:28:50
(2 days ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 17:37:00
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 13:36:54.301217 2026] [security2:error] [pid 26188:tid 26188] [client 172.70.240.195:11045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "landtug.com"] [uri "/.git/config"] [unique_id "akahtoQ3vuF7hLGHqU01CQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 13:13:23
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 09:13:20.327967 2026] [security2:error] [pid 12725:tid 12725] [client 172.70.240.195:12818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "moonstonenightclub.com"] [uri "/.git/config"] [unique_id "akZj8N1rct_MvDURBJOuogAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 11:30:31
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:30:25.806567 2026] [security2:error] [pid 20274:tid 20274] [client 172.70.240.195:11201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greatchristianadventure.com"] [uri "/.git/config"] [unique_id "akZL0ZPuUmUX4ca6WI_vwAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-27 05:29:53
(2 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
Rocky Mountain Bioengineering Symposium
2026-06-24 16:34:49
(2 weeks ago)
172.70.240.195 - - [24/Jun/2026:10:34:49 -0600] "GET /.git/config HTTP/2.0" 301 390 "-" "Mozilla/5.0 ...
show more
172.70.240.195 - - [24/Jun/2026:10:34:49 -0600] "GET /.git/config HTTP/2.0" 301 390 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.6422.113 Mobile Safari/537.36"
...
show less
Web App Attack
Anonymous
2026-06-23 07:19:48
(2 weeks ago)
172.70.240.195 - - [23/Jun/2026:07:19:48 +0000] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 437 ...
show more
172.70.240.195 - - [23/Jun/2026:07:19:48 +0000] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 437 "-" "http://ashleybutcher.eu/wp-admin/install.php?step=1"
...
show less
Bad Web Bot
Web App Attack
Anonymous
2026-06-18 23:10:55
(3 weeks ago)
172.70.240.195 - - [18/Jun/2026:23:10:55 +0000] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 437 ...
show more
172.70.240.195 - - [18/Jun/2026:23:10:55 +0000] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 437 "-" "http://ashleybutcher.eu/wp-admin/install.php?step=1"
...
show less
Bad Web Bot
Web App Attack
Anonymous
2026-06-16 14:24:27
(3 weeks ago)
172.70.240.195 - - [16/Jun/2026:14:24:26 +0000] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 437 ...
show more
172.70.240.195 - - [16/Jun/2026:14:24:26 +0000] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 437 "-" "http://ashleybutcher.eu/wp-admin/install.php?step=1"
...
show less
Bad Web Bot
Web App Attack
Anonymous
2026-06-12 01:06:58
(4 weeks ago)
172.70.240.195 - - [12/Jun/2026:01:06:57 +0000] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 437 ...
show more
172.70.240.195 - - [12/Jun/2026:01:06:57 +0000] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 437 "-" "http://ashleybutcher.eu/wp-admin/install.php?step=1"
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 04:09:50
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 00:09:47.364295 2026] [security2:error] [pid 4223:tid 4305] [client 172.70.240.195:13112] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "secdc.org"] [uri "/.git/config"] [unique_id "aiTvC1WGEO7GVqZ-l7bWCgAAARI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-06-03 22:17:48
(1 month ago)
[ThuJun0400:17:41.6633892026][security2:error][pid924102:tid924226][client172.70.240.195:0]ModSecuri ...
show more
[ThuJun0400:17:41.6633892026][security2:error][pid924102:tid924226][client172.70.240.195:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"viaggi-marocco-lugano.ch\"][uri\"/.git/config\"][unique_id\"aiCoBU0OyIOmV2QAR3skSwAAAAo\"]
show less
Hacking
Web App Attack
๐บ๐ธ
mnsf
2026-06-02 10:06:18
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 09:45:21
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 05:45:16.085305 2026] [security2:error] [pid 32697:tid 32697] [client 172.70.240.195:9515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "clevercad.com"] [uri "/.git/config"] [unique_id "ah6mLPGTv3Fvn1BEFalE6QAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-01 19:02:50
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack