๐บ๐ธ
TPI-Abuse
2026-07-13 08:39:07
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 04:38:59.223822 2026] [security2:error] [pid 26598:tid 26598] [client 172.70.246.213:14068] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.christine.mathewyoung.com"] [uri "/.env.local"] [unique_id "alSkI26kwJizib8SPki8twAAAAI"], referer: https://www.google.com/search?q=www.christine.mathewyoung.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐ฑ
router.al
2026-07-12 23:25:43
(6 days ago)
07/12/2026-23:25:43.241129 172.70.246.213 Protocol: 6 ET SCAN LeakIX Inbound User-Agent
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-02 14:20:30
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 10:20:23.423556 2026] [security2:error] [pid 24993:tid 24993] [client 172.70.246.213:12043] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rlarms.com"] [uri "/.git/config"] [unique_id "akZzp-nCpnb7NwiV7pd80QAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 11:47:17
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:47:10.857645 2026] [security2:error] [pid 12997:tid 12997] [client 172.70.246.213:9726] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pjv.us.pjvcds.com"] [uri "/.env.production"] [unique_id "akZPvp5xgD_8uRs5cnXZbQAAAAI"], referer: https://www.google.com/search?q=pjv.us.pjvcds.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-19 17:05:35
(1 month ago)
Abuse Detected (2)
Brute-Force
Web App Attack
๐ฉ๐ช
4server
2026-06-02 03:12:53
(1 month ago)
[TueJun0205:12:50.3667002026][security2:error][pid3694873:tid3695001][client172.70.246.213:0]ModSecu ...
show more
[TueJun0205:12:50.3667002026][security2:error][pid3694873:tid3695001][client172.70.246.213:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\|wget\|python\|nikto\|sqlmap\|acunetix\|fimap\|dirbuster\|cmsmap\)\"atREQUEST_HEADERS:user-agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"217\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"cpcontacts.archi-box.ch\"][uri\"/.git/config\"][unique_id\"ah5KMsejvLSAmIsA9kUF9gAAARQ\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-06-02 02:05:33
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
WellSpring
2026-05-27 19:41:26
(1 month ago)
wordpress scan on 425.today/wp-admin/install.php โ WellSpr.ing/NetSentinel civic-AI security layer
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 15:46:26
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 11:46:19.545404 2026] [security2:error] [pid 22959:tid 22987] [client 172.70.246.213:10525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "terihagadorn.com"] [uri "/.git/config"] [unique_id "af4FSz3TIVbpLTDAH9q2kgAAAZQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
todix
2026-04-07 07:22:26
(3 months ago)
WebAttack or semilar from 172.70.246.213
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 15:30:25
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 11:30:16.731451 2026] [security2:error] [pid 252659:tid 252659] [client 172.70.246.213:12746] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.cynthiabaxter.com"] [uri "/.git/logs/HEAD"] [unique_id "adPRiEibhVsinu-L6T9C4gAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 13:28:19
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 09:28:15.696265 2026] [security2:error] [pid 224660:tid 224660] [client 172.70.246.213:9577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.linearconceptsllc.com"] [uri "/.git/refs/heads/master"] [unique_id "adO073KDY4iWtwq0WclaAgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-04-06 04:06:33
(3 months ago)
[MonApr0606:06:26.1703392026][security2:error][pid1500469:tid1500486][client172.70.246.213:0]ModSecu ...
show more
[MonApr0606:06:26.1703392026][security2:error][pid1500469:tid1500486][client172.70.246.213:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"197\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"autodiscover.whatsdecor.ch\"][uri\"/.git/refs/heads/master\"][unique_id\"adMxQhGwfUcC21GKgRlR_QAAAM4\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 11:55:53
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 07:55:49.542640 2026] [security2:error] [pid 32462:tid 32462] [client 172.70.246.213:12501] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "test.mathewyoung.com"] [uri "/.env"] [unique_id "adJNxRQ65_JmILpkRxzmCQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 09:23:55
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 05:23:48.032267 2026] [security2:error] [pid 2709:tid 2709] [client 172.70.246.213:10466] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.gdhlgroup.com"] [uri "/.git/refs/heads/main"] [unique_id "adIqJM7HxM-p4kCL-0Iw6gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack