๐บ๐ธ
TPI-Abuse
2026-07-02 09:39:17
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:39:13.373920 2026] [security2:error] [pid 11035:tid 11035] [client 172.70.246.99:13850] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bhartman.com"] [uri "/.git/config"] [unique_id "akYxwTu-ArE6-ETlC-B-7wAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
acadeova
2026-06-06 03:22:41
(3 weeks ago)
๐จ Recon detected (nft drop)
SRC=172.70.246.99
Observed=TCP dpt=80 in=enp0s6 ttl=59
Time=recent(journ ...
show more
๐จ Recon detected (nft drop)
SRC=172.70.246.99
Observed=TCP dpt=80 in=enp0s6 ttl=59
Time=recent(journalctl: 10 minutes ago)
Assessment=Generic scanning / reconnaissance (PORT_SCAN)
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-04 19:31:27
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 15:31:22.928389 2026] [security2:error] [pid 26810:tid 26824] [client 172.70.246.99:14120] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gtci.us"] [uri "/.git/config"] [unique_id "aiHSik4W5Gk8EwBiwAhKVwAAAQo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WellSpring
2026-05-21 17:45:16
(1 month ago)
wordpress scan on 213.today/wp-admin/install.php โ WellSpr.ing/NetSentinel civic-AI security layer
Bad Web Bot
Web App Attack
๐ณ๐ฑ
debestelapp
2026-04-04 00:35:06
(2 months ago)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 09:24:18
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 05:24:12.138287 2026] [security2:error] [pid 3843:tid 3843] [client 172.70.246.99:9641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.bwmurphy.com"] [uri "/.git/index"] [unique_id "ac-HPFPpKda7S1O9zyvjgwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 00:05:18
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 20:05:07.416186 2026] [security2:error] [pid 32503:tid 32516] [client 172.70.246.99:11887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "property-management.property-management-companies-chicago.com"] [uri "/.git/index"] [unique_id "ac8EM05f4PCMogeIXuMsigAAAMk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-02 22:08:21
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 18:08:15.540092 2026] [security2:error] [pid 8044:tid 8044] [client 172.70.246.99:14150] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stananddana.com"] [uri "/.env.development.local"] [unique_id "ac7oz7LQ2lQTemye-flKkgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-03-30 22:01:47
(3 months ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-03-30 22:00:52
(3 months ago)
Auto-ban: >3000 req/min op 2026-03-30
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-03-30 17:48:30
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 13:48:22.337771 2026] [security2:error] [pid 27564:tid 27564] [client 172.70.246.99:9865] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lazymanvegan.com"] [uri "/.git/config"] [unique_id "acq3Zne1kKr7ytmTon1RbgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 07:18:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 03:18:40.823020 2026] [security2:error] [pid 21140:tid 21140] [client 172.70.246.99:13356] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.trinitydent.com"] [uri "/.git/refs/heads/master"] [unique_id "acoj0BfJddSitinodWPaAQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 05:10:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 01:10:25.237804 2026] [security2:error] [pid 30241:tid 30241] [client 172.70.246.99:11293] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.dalessalesandservice.com"] [uri "/.git/HEAD"] [unique_id "acoFwQg6tqrqnt_tkLuEGgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 01:54:48
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 21:54:44.053908 2026] [security2:error] [pid 32565:tid 32565] [client 172.70.246.99:12642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.wildcomaui.com"] [uri "/.env.test"] [unique_id "acnX5PHFU_gLkb_NgstMFwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 00:09:57
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.246.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 20:09:51.919295 2026] [security2:error] [pid 7416:tid 7416] [client 172.70.246.99:9586] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.gcchsa.org"] [uri "/.env"] [unique_id "acm_TypxHUin43vmTkr-CAAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack