Anonymous
2026-07-16 08:37:32
(3 days ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐ท๐บ
DZBOT
2026-07-13 17:41:50
(5 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
Anonymous
2026-07-12 06:08:59
(1 week ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐ฌ๐ง
OptimusGO
2026-06-17 04:11:59
(1 month ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-06-17 05:11:59 UTC
Log evidence:
06/17/2026-05:11:58.248350 [**] [1:1000103:1] SECURITY Management Port Probe - CRITICAL [**] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 172.70.242.131:9866 -> 185.127.18.66:8443
show less
Port Scan
Brute-Force
๐บ๐ธ
mnsf
2026-06-16 03:05:28
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-05 02:44:40
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 04 22:44:35.258250 2026] [security2:error] [pid 27295:tid 27295] [client 172.70.242.131:9804] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "daos.org"] [uri "/.git/config"] [unique_id "aflZk-_CqcQx5_kMSqdbiQAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Sรฉfora Srl
2026-04-26 14:02:02
(2 months ago)
Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache ...
show more
Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache-badbot jail
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-16 13:33:01
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 16 09:32:55.249853 2026] [security2:error] [pid 2911690:tid 2911690] [client 172.70.242.131:10300] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wetheparty.org.stlouisdave.com"] [uri "/.env.save"] [unique_id "aeDlB9bfFIkbdO5aSLtShwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 12:09:04
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 08:08:52.439679 2026] [security2:error] [pid 1508092:tid 1508092] [client 172.70.242.131:10116] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.teeandpanteeshop.srtmanagementservices.com"] [uri "/.env"] [unique_id "adTz1MxENBFcKx38mYtTLQAAACk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-04-06 23:58:13
(3 months ago)
Excessive 404/403 errors
Brute-Force
๐ฉ๐ช
FeG Deutschland
2026-04-06 14:36:14
(3 months ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 03:24:35
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 23:24:31.964633 2026] [security2:error] [pid 17354:tid 17354] [client 172.70.242.131:9972] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.joeordie.com"] [uri "/.git/logs/HEAD"] [unique_id "adMnb4vf608isi6WAS5n4wAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 00:41:52
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 20:41:46.154245 2026] [security2:error] [pid 4879:tid 4879] [client 172.70.242.131:10799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.d-sinema.com"] [uri "/.git/refs/heads/main"] [unique_id "adMBSoZpv9shqQyxLtUyzQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 04:27:17
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 00:27:08.522686 2026] [security2:error] [pid 6720:tid 6720] [client 172.70.242.131:9708] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.braunhausmedia.com"] [uri "/.env.local"] [unique_id "adCTHB2-YmIJu-SK0TIysgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 02:11:52
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.242.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 22:11:47.069643 2026] [security2:error] [pid 2770:tid 2770] [client 172.70.242.131:13379] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "puckerbackbikinis.puckerbikini.com"] [uri "/.git/refs/heads/main"] [unique_id "adBzYzXzmbelkh2Hmor1DAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack