๐ฉ๐ช
srtzero
2026-07-07 13:13:18
(2 days ago)
172.70.240.48 - - [07/Jul/2026:15:13:17 +0200] "GET /wp-admin/install.php?step=1 HTTP/2.0" 404 162 " ...
show more
172.70.240.48 - - [07/Jul/2026:15:13:17 +0200] "GET /wp-admin/install.php?step=1 HTTP/2.0" 404 162 "-" "http://convergencegaming.net/wp-admin/install.php?step=1"
...
show less
Port Scan
Bad Web Bot
Web App Attack
๐ซ๐ฎ
Erpelstolz
2026-07-05 16:38:51
(4 days ago)
external host: 172.70.240.48 - - [05/Jul/2026:18:38:48 +0200] "GET /wp-admin/install.php?step=1 HTTP ...
show more
external host: 172.70.240.48 - - [05/Jul/2026:18:38:48 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 5663 "-" "http://erpelstolz.com/wp-admin/install.php?step=1" CF-Ray:a167cd5589974f95-FRA CF-IP:-
show less
Web App Attack
Anonymous
2026-06-29 11:10:46
(1 week ago)
[Mon Jun 29 13:10:45.392962 2026] [authz_core:error] [pid 21600] [client 172.70.240.48:9930] AH01630 ...
show more
[Mon Jun 29 13:10:45.392962 2026] [authz_core:error] [pid 21600] [client 172.70.240.48:9930] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Mon Jun 29 13:10:45.477753 2026] [authz_core:error] [pid 21600] [client 172.70.240.48:9930] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Mon Jun 29 13:10:45.554467 2026] [authz_core:error] [pid 21600] [client 172.70.240.48:9930] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
Anonymous
2026-06-26 11:40:50
(1 week ago)
[Fri Jun 26 13:40:48.097701 2026] [authz_core:error] [pid 12472] [client 172.70.240.48:12560] AH0163 ...
show more
[Fri Jun 26 13:40:48.097701 2026] [authz_core:error] [pid 12472] [client 172.70.240.48:12560] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Jun 26 13:40:49.042947 2026] [authz_core:error] [pid 12472] [client 172.70.240.48:12560] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Jun 26 13:40:49.089889 2026] [authz_core:error] [pid 12472] [client 172.70.240.48:12560] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
Anonymous
2026-06-25 12:12:54
(2 weeks ago)
[Thu Jun 25 14:12:46.979997 2026] [authz_core:error] [pid 20636] [client 172.70.240.48:14112] AH0163 ...
show more
[Thu Jun 25 14:12:46.979997 2026] [authz_core:error] [pid 20636] [client 172.70.240.48:14112] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Thu Jun 25 14:12:53.118452 2026] [authz_core:error] [pid 20638] [client 172.70.240.48:14116] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Thu Jun 25 14:12:53.183122 2026] [authz_core:error] [pid 20638] [client 172.70.240.48:14116] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐ฉ๐ช
webko.si
2026-06-24 17:19:25
(2 weeks ago)
pridenmozic.si: Bruteforce web app access, URI detail: '/.docker/config.json'.
Web App Attack
๐บ๐ธ
chillcog.com
2026-06-22 09:08:14
(2 weeks ago)
Blocked by on us-1-terraforge [8443/tcp] | SPT: 11463 | TTL: 55 | LEN: 60 | TOS: 0x00 โข Reported by: ...
show more
Blocked by on us-1-terraforge [8443/tcp] | SPT: 11463 | TTL: 55 | LEN: 60 | TOS: 0x00 โข Reported by: terraforge.fun
show less
Port Scan
๐บ๐ธ
mnsf
2026-06-16 02:05:10
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ฉ๐ช
srtzero
2026-06-14 06:00:58
(3 weeks ago)
172.70.240.48 - - [14/Jun/2026:08:00:58 +0200] "GET /wp-admin/install.php?step=1 HTTP/2.0" 404 162 " ...
show more
172.70.240.48 - - [14/Jun/2026:08:00:58 +0200] "GET /wp-admin/install.php?step=1 HTTP/2.0" 404 162 "-" "http://convergencegaming.net/wp-admin/install.php?step=1"
...
show less
Port Scan
Bad Web Bot
Web App Attack
๐ง๐ท
maviei
2026-06-11 11:45:00
(4 weeks ago)
2026-06-11T08:44:56.872735-03:00 srv1251771 kernel: [945127.177740] [UFW BLOCK] IN=eth0 OUT= MAC=40: ...
show more
2026-06-11T08:44:56.872735-03:00 srv1251771 kernel: [945127.177740] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=172.70.240.48 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=15974 DF PROTO=TCP SPT=13276 DPT=8443 WINDOW=65535 RES=0x00 SYN URGP=0
2026-06-11T08:44:57.909638-03:00 srv1251771 kernel: [945128.214621] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=172.70.240.48 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=15975 DF PROTO=TCP SPT=13276 DPT=8443 WINDOW=65535 RES=0x00 SYN URGP=0
2026-06-11T08:44:58.934613-03:00 srv1251771 kernel: [945129.239623] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=172.70.240.48 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=15976 DF PROTO=TCP SPT=13276 DPT=8443 WINDOW=65535 RES=0x00 SYN URGP=0
...
show less
Port Scan
๐ท๐บ
DZBOT
2026-06-10 21:34:47
(4 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-09 12:30:53
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 00:40:17
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 20:40:10.753415 2026] [security2:error] [pid 11552:tid 11552] [client 172.70.240.48:12052] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "benissan.com.neneh.biz"] [uri "/.git/config"] [unique_id "aiS96k2_9PAVrUwrpJMe8AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 12:45:50
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 08:45:46.962625 2026] [security2:error] [pid 2320:tid 2328] [client 172.70.240.48:12733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "curubin.com"] [uri "/.git/config"] [unique_id "ah7QejTiMZmsyGQ-creY_wAAAYQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 11:26:53
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 07:26:49.119432 2026] [security2:error] [pid 30029:tid 30029] [client 172.70.240.48:12429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brazilianbottom.com"] [uri "/.git/config"] [unique_id "ah69-QxfW42AF8Uk4Q8TqQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack