๐ฎ๐ฉ
Burayot
2026-07-02 17:40:05
(14 hours ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 172.70.247.138 (DE/Germany/-): 1 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 172.70.247.138 (DE/Germany/-): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 15:00:28
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:00:23.511096 2026] [security2:error] [pid 8165:tid 8165] [client 172.70.247.138:9246] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "foamnoodlejousting.com"] [uri "/.git/config"] [unique_id "akZ9Bz-MqqMFC5XDdwtT6AAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-16 05:05:46
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ฎ๐ฉ
gonet.home
2026-06-13 20:15:15
(2 weeks ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-12 20:15:12
(2 weeks ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-11 20:15:10
(3 weeks ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-10 20:15:05
(3 weeks ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-09 20:15:04
(3 weeks ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐ฎ๐ฉ
gonet.home
2026-06-08 06:10:02
(3 weeks ago)
Security Event Detected by SOC Gonet: event=alert, hits=1
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-02 13:57:16
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 09:57:10.958170 2026] [security2:error] [pid 17195:tid 17195] [client 172.70.247.138:9324] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lordhari.com"] [uri "/.git/config"] [unique_id "ah7hNnkYk2ZVQkThuSOn5wAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-28 03:23:21
(1 month ago)
(mod_security) mod_security (id:949110) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:949110) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 23:23:13.059879 2026] [security2:error] [pid 30436:tid 30436] [client 172.70.247.138:14087] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "joycepelham.com"] [uri "/backup.sql"] [unique_id "ahe1IeIyFUCSDRMeZUZegQAAAAU"], referer: https://www.google.com/search?q=joycepelham.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-15 11:51:28
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 07:51:19.919071 2026] [security2:error] [pid 2921:tid 2921] [client 172.70.247.138:10811] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||testrong.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "testrong.com"] [uri "/backup.sql"] [unique_id "agcIt20U_OOOEyeUMQ3odAAAACs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-10 19:41:31
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 15:41:25.699454 2026] [security2:error] [pid 28112:tid 28112] [client 172.70.247.138:11228] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.mta-sts.suffolksystems.com|F|2"] [data ".key"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.mta-sts.suffolksystems.com"] [uri "/config/master.key"] [unique_id "agDfZTKzW34tEYFKNdnz4QAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
trentwiles.com
2026-05-07 22:41:34
(1 month ago)
Unauthorized connection attempt detected from IP address 172.70.247.138 to port 80 [SYD]
Port Scan
๐บ๐ธ
TPI-Abuse
2026-04-30 06:49:17
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.247.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 02:49:13.297993 2026] [security2:error] [pid 6577:tid 6577] [client 172.70.247.138:11572] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.f4fbbs.com"] [uri "/.git/config"] [unique_id "afL7aVIMRQrW6ermqEfiMwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack