πΊπΈ
TPI-Abuse
2026-07-02 11:35:32
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:35:28.012369 2026] [security2:error] [pid 1222:tid 1233] [client 172.70.240.202:14168] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beckmon.com"] [uri "/.git/config"] [unique_id "akZNADLhIqm_CJ71QCHwjAAAAUQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 10:18:22
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:18:17.947043 2026] [security2:error] [pid 22029:tid 22052] [client 172.70.240.202:13329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "condominium-property-management.com"] [uri "/.git/config"] [unique_id "akY66QpVHw23dBeX-GgPtAAAARU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
DZBOT
2026-06-30 16:14:58
(6 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
π―π΅
S.O.B.A. Dev.
2026-06-19 16:54:43
(2 weeks ago)
Persistent port scanning or vulnerability scanning
Port Scan
π―π΅
S.O.B.A. Dev.
2026-06-15 12:16:26
(3 weeks ago)
Persistent port scanning or vulnerability scanning
Port Scan
πΊπΈ
TPI-Abuse
2026-06-08 03:53:26
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 23:53:19.016718 2026] [security2:error] [pid 21022:tid 21022] [client 172.70.240.202:13162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bhempower.com"] [uri "/.git/config"] [unique_id "aiY8r-T9yZLRBW--nCL4kgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
backslash
2026-06-07 05:27:00
(1 month ago)
block ruleset bad bot: misc bad content F608233CC4C86EE814CE8DDDA9C4A0D3C79882F6
Bad Web Bot
πΊπΈ
mnsf
2026-06-02 02:05:30
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
π·πΊ
DZBOT
2026-06-01 09:50:24
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
π©πͺ
FeG Deutschland
2026-05-31 22:15:44
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
π¦πΊ
trentwiles.com
2026-05-12 16:05:10
(1 month ago)
Unauthorized connection attempt detected from IP address 172.70.240.202 to port 80 [SYD]
Port Scan
πΊπΈ
TPI-Abuse
2026-05-11 18:26:54
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 14:26:46.090438 2026] [security2:error] [pid 13410:tid 13410] [client 172.70.240.202:14259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "candlecrawler.trade.fiyaplatform.com"] [uri "/.git/config"] [unique_id "agIfZsutEkbOo-Vgwsh38AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-08 11:07:15
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 07:07:11.677681 2026] [security2:error] [pid 627:tid 627] [client 172.70.240.202:13536] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "foxmm.com"] [uri "/.git/config"] [unique_id "af3D37CSFYi0z1viTHgakwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
FeG Deutschland
2026-05-01 06:44:49
(2 months ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-30 16:17:42
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 12:17:35.164333 2026] [security2:error] [pid 17352:tid 17382] [client 172.70.240.202:13236] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.mailporte.com"] [uri "/.git/config"] [unique_id "afOAn4CZWrVoMr1i3mJhcwAAAYE"]
show less
Brute-Force
Bad Web Bot
Web App Attack