๐บ๐ธ
mawan
2026-06-30 12:09:24
(6 days ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ฎ๐ฉ
Burayot
2026-06-28 21:06:49
(1 week ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 172.70.243.160 (DE/Germany/-): 1 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 172.70.243.160 (DE/Germany/-): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 19:40:25
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 15:40:18.329861 2026] [security2:error] [pid 14941:tid 14941] [client 172.70.243.160:10138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "femdomchatbot.com"] [uri "/.git/config"] [unique_id "akAnIgWRbp8vrTTTYxEudQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 02:35:25
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 22:35:17.914678 2026] [security2:error] [pid 20764:tid 20764] [client 172.70.243.160:10080] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thomasmichaelrussell.com"] [uri "/.git/config"] [unique_id "aioe5eR-zFjrPb-MdHVtigAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-07 21:59:27
(4 weeks ago)
Auto-ban: >3000 req/min op 2026-06-07
Web App Attack
SSH
Hacking
๐ณ๐ฑ
wolfemium
2026-06-04 02:03:47
(1 month ago)
172.70.243.160 - - [04/Jun/2026:05:03:45 +0300] "GET /db.php HTTP/1.1" 502 150 "-" "-"
172.70.243.16 ...
show more
172.70.243.160 - - [04/Jun/2026:05:03:45 +0300] "GET /db.php HTTP/1.1" 502 150 "-" "-"
172.70.243.160 - - [04/Jun/2026:05:03:45 +0300] "GET /lib.php HTTP/1.1" 502 150 "-" "-"
172.70.243.160 - - [04/Jun/2026:05:03:45 +0300] "GET /lala.php HTTP/1.1" 502 150 "-" "-"
172.70.243.160 - - [04/Jun/2026:05:03:46 +0300] "GET /fun.php HTTP/1.1" 502 150 "-" "-"
172.70.243.160 - - [04/Jun/2026:05:03:46 +0300] "GET /wp-the.php HTTP/1.1" 502 150 "-" "-"
172.70.243.160 - - [04/Jun/2026:05:03:46 +0300] "GET /vx.php HTTP/1.1" 502 150 "-" "-"
...
show less
DDoS Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 17:51:18
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 13:51:12.921722 2026] [security2:error] [pid 24765:tid 24765] [client 172.70.243.160:12745] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "united-kingdom-boat-registration.com"] [uri "/.git/config"] [unique_id "ah8YECPiDoV8MBw_7QQvOQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-31 21:27:25
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 17:27:19.363327 2026] [security2:error] [pid 4989:tid 5014] [client 172.70.243.160:12669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ptinctcom.pwrcoupling.com"] [uri "/.git/config"] [unique_id "ahynt2m8b69fXfYSUyRYGwAAAJE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WellSpring
2026-05-25 12:41:45
(1 month ago)
wordpress scan on 708.today/wp-admin/install.php โ WellSpr.ing/NetSentinel civic-AI security layer
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-11 05:03:21
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 01:03:13.321704 2026] [security2:error] [pid 26198:tid 26231] [client 172.70.243.160:14306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "miraclearts.com"] [uri "/.env"] [unique_id "agFjEdIKhJMJqslOITJXZAAAAEQ"], referer: https://www.google.com/search?q=miraclearts.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-05 11:13:50
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 07:13:43.566897 2026] [security2:error] [pid 26920:tid 26920] [client 172.70.243.160:14251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rygg.biz"] [uri "/.git/config"] [unique_id "afnQ5zAxXzJlLkx1IjxozgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-05-01 06:44:12
(2 months ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-26 09:21:44
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 05:21:37.779877 2026] [security2:error] [pid 13687:tid 13687] [client 172.70.243.160:10344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "macryder.com"] [uri "/.git/config"] [unique_id "ae3ZIWs6MZW90x038T7xdQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-23 06:24:10
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 02:24:05.081991 2026] [security2:error] [pid 25768:tid 25768] [client 172.70.243.160:10622] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "asterioland.com"] [uri "/.git/config"] [unique_id "aem7BRogWHD6qVl3eTXxKAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 07:20:06
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 03:19:57.124406 2026] [security2:error] [pid 2098427:tid 2098507] [client 172.70.243.160:13979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.gabegabel.com"] [uri "/.env.test"] [unique_id "adSwHcZjGo1jQnoasnacGgAAAQw"]
show less
Brute-Force
Bad Web Bot
Web App Attack