Anonymous
2026-07-17 16:05:36
(6 hours ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
mnsf
2026-06-04 05:05:21
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 17:14:23
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 13:14:18.506151 2026] [security2:error] [pid 17686:tid 17686] [client 172.70.243.66:12980] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "terrageosynthetics.com"] [uri "/.git/config"] [unique_id "ah8Paqe5oHf5b-Q6DhsMUQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 08:45:31
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 04:45:25.521926 2026] [security2:error] [pid 17846:tid 17924] [client 172.70.243.66:10047] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aceelectricalsupplies.com"] [uri "/.git/config"] [unique_id "ah6YJdbOtqpFbAw9nRBaggAAAg8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 02:48:35
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 22:48:31.495679 2026] [security2:error] [pid 26103:tid 26103] [client 172.70.243.66:12209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sscsco.com"] [uri "/.git/config"] [unique_id "ah5Ef0QC4FVTn8EWPBLwFwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-26 08:08:56
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 04:08:51.282854 2026] [security2:error] [pid 4578:tid 4578] [client 172.70.243.66:11711] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kcloot.com"] [uri "/.git/config"] [unique_id "ahVVE9zGFV8nC32Y-1bi1gAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
wimaxnz
2026-05-17 02:41:45
(2 months ago)
Automated report from 247 Guardian: repeated malicious activity detected. | reason=nginx_badpath
Brute-Force
SSH
Port Scan
๐บ๐ธ
TPI-Abuse
2026-05-10 19:02:51
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 15:02:45.246897 2026] [security2:error] [pid 28882:tid 28882] [client 172.70.243.66:13418] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/config/parameters.yml" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stenbot.com"] [uri "/app/config/parameters.yml"] [unique_id "agDWVS3tseJ1yan5ahAr6QAAAAI"], referer: https://www.google.com/search?q=stenbot.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 13:17:36
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 09:17:29.730780 2026] [security2:error] [pid 6719:tid 6719] [client 172.70.243.66:13815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaeltravis.com"] [uri "/.git/config"] [unique_id "af3iaWT2CpZoJmuwM0zG5AAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 13:37:20
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 09:37:13.964722 2026] [security2:error] [pid 22173:tid 22173] [client 172.70.243.66:11470] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.donnrowe.com"] [uri "/.git/config"] [unique_id "afNbCfd1GH642p93Sp-yewAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
Roper123
2026-04-07 07:03:10
(3 months ago)
Web exploits
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 04:04:45
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 00:04:39.151714 2026] [security2:error] [pid 972577:tid 972577] [client 172.70.243.66:11117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.register-yacht-gibraltar.com"] [uri "/.git/HEAD"] [unique_id "adSCV8gIVC0BLwGUwqr6KgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 06:42:44
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 02:42:37.456725 2026] [security2:error] [pid 16333:tid 16333] [client 172.70.243.66:12197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.powersystemprotection.co.uk"] [uri "/.git/logs/HEAD"] [unique_id "adNV3ZZ2l8AKJs-Lm-ZKfwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
ISPLtd
2026-04-05 22:17:54
(3 months ago)
172.70.243.66 - - [05/Apr/2026:19:17:53 -0300] "GET /.git/config
172.70.243.66 - - [05/Apr/2026:19:1 ...
show more
172.70.243.66 - - [05/Apr/2026:19:17:53 -0300] "GET /.git/config
172.70.243.66 - - [05/Apr/2026:19:17:53 -0300] "GET /.git/logs/HEAD
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 20:22:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.243.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 16:22:05.233242 2026] [security2:error] [pid 720:tid 720] [client 172.70.243.66:13473] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dev.bsa1688.com"] [uri "/.env.staging"] [unique_id "adFy7T82gQVObRbHG4PJQQAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack