🇫🇷
Pays d'Angoulême
2026-07-09 14:55:54
(3 hours ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/core/install.php
Web App Attack
🇳🇴
jad-abuse
2026-06-17 19:32:34
(3 weeks ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_admin. ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_admin. Observed by 1 sensor(s); 1 hits.
show less
Brute-Force
Web App Attack
🇺🇸
mnsf
2026-06-09 10:06:40
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
🇺🇸
mnsf
2026-06-02 14:05:13
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
🇩🇪
www.mammazone.it
2026-05-31 17:07:40
(1 month ago)
[Sun May 31 19:07:40.232065 2026] [access_compat:error] [pid 939429] [client 172.70.243.128:9494] AH ...
show more
[Sun May 31 19:07:40.232065 2026] [access_compat:error] [pid 939429] [client 172.70.243.128:9494] AH01797: client denied by server configuration: /var/www/fabiodirauso.it/.htpasswd
...
show less
Hacking
Web App Attack
🇩🇪
www.mammazone.it
2026-05-13 08:55:06
(1 month ago)
[Wed May 13 10:55:06.380307 2026] [access_compat:error] [pid 2437649] [client 172.70.243.128:11655] ...
show more
[Wed May 13 10:55:06.380307 2026] [access_compat:error] [pid 2437649] [client 172.70.243.128:11655] AH01797: client denied by server configuration: /var/www/fabiodirauso.it/app.config.js
...
show less
Hacking
Web App Attack
🇦🇱
router.al
2026-05-08 12:19:55
(2 months ago)
05/08/2026-12:19:54.313943 172.70.243.128 Protocol: 6 GPL WEB_SERVER 403 Forbidden
Port Scan
🇺🇸
TPI-Abuse
2026-05-06 17:00:32
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 06 13:00:21.132367 2026] [security2:error] [pid 27568:tid 27568] [client 172.70.243.128:12162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.b9k9.com"] [uri "/.env.local"] [unique_id "aftzpcV-t9PS8vWnESaBHwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇦🇱
router.al
2026-05-01 19:15:46
(2 months ago)
05/01/2026-19:15:46.376658 172.70.243.128 Protocol: 6 ET SCAN LeakIX Inbound User-Agent
Hacking
🇺🇸
TPI-Abuse
2026-04-30 18:05:25
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 14:05:21.051740 2026] [security2:error] [pid 31725:tid 31725] [client 172.70.243.128:9745] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.readyaiminspire.com"] [uri "/.git/config"] [unique_id "afOZ4Rb2uRb3em9XayBBgQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇦🇱
router.al
2026-04-30 13:39:26
(2 months ago)
04/30/2026-13:39:26.658592 172.70.243.128 Protocol: 6 ET SCAN LeakIX Inbound User-Agent
Hacking
🇺🇸
TPI-Abuse
2026-04-30 12:09:21
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 08:09:14.816296 2026] [security2:error] [pid 2138:tid 2138] [client 172.70.243.128:11788] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.walkenfeld.com"] [uri "/.git/config"] [unique_id "afNGauCKDtRjpO2NR-J5AQAAAI8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇺🇸
TPI-Abuse
2026-04-04 05:58:28
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.128 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 01:58:19.700922 2026] [security2:error] [pid 14526:tid 14526] [client 172.70.243.128:13630] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.brevardzen.org"] [uri "/.git/refs/heads/main"] [unique_id "adCoe-1tOHL5tzVzja89lwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇺🇸
mnsf
2026-04-04 03:05:38
(3 months ago)
Scanning/Probing (14)
Brute-Force
Web App Attack
🇺🇸
uchat-ai.com
2026-04-03 15:58:07
(3 months ago)
IP 172.70.243.128 在过去24小时内进行了 6 次攻击。详细信息: 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: ...
show more
IP 172.70.243.128 在过去24小时内进行了 6 次攻击。详细信息: 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.env found within REQUEST_FILENAME: /.env_config"] (Severity: 2); 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.env found within REQUEST_FILENAME: /.env.staging"] (Severity: 2); 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.env found within REQUEST_FILENAME: /.env.php"] (Severity: 2); 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.env found within REQUEST_FILENAME: /.env.backup"] (Severity: 2); 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.env found within REQUEST_FILENAME: /.env_config"] (Severity: 2); 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.env found within REQUEST_FILENAME: /.env_backup"] (Severity: 2)
show less
Web App Attack