๐บ๐ธ
TPI-Abuse
2026-07-15 08:40:33
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 04:40:22.803765 2026] [security2:error] [pid 12484:tid 12501] [client 172.70.248.48:12211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.stock-footage-8mm.credit-card-cap.com"] [uri "/.env.old"] [unique_id "aldHdv-zWFTHGjfC5lXR4wAAAIk"], referer: https://www.google.com/search?q=www.stock-footage-8mm.credit-card-cap.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
RootOPSOVH
2026-07-12 19:07:22
(2 days ago)
GET /wp-admin/install.php?step=1 | UA: http://rootops.ovh/wp-admin/install.php?step=1
Web Spam
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-07-12 00:31:05
(3 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 15:19:51
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:19:46.230453 2026] [security2:error] [pid 2514:tid 2514] [client 172.70.248.48:9743] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theholographicseed.com"] [uri "/.git/config"] [unique_id "akaBkiO2mWTTzKV8ATz7mwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 12:55:56
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 08:55:48.502541 2026] [security2:error] [pid 20433:tid 20433] [client 172.70.248.48:11218] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marijuanajoint.com"] [uri "/.git/config"] [unique_id "akZf1BP49tzuPp0NlFLQJQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 17:03:13
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 13:03:06.184211 2026] [security2:error] [pid 24727:tid 24727] [client 172.70.248.48:12889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chinakingdom.hk"] [uri "/.git/config"] [unique_id "akACSnbGXLacC9F9WGPXXAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-14 03:06:40
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-06 22:17:32
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 18:17:25.864142 2026] [security2:error] [pid 10834:tid 10979] [client 172.70.248.48:12093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "colinkyffinmusic.com"] [uri "/.git/config"] [unique_id "aiScdZERcooeCrM1BrKSJAAAAIw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 10:52:05
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 06:51:57.737955 2026] [security2:error] [pid 19574:tid 19574] [client 172.70.248.48:14233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ferienwohnungen-eva.at"] [uri "/.git/config"] [unique_id "aiFYzWApTDOks9d8vaVvLwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 03:38:53
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 23:38:49.532297 2026] [security2:error] [pid 31393:tid 31393] [client 172.70.248.48:13326] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "reneehill.net"] [uri "/.git/config"] [unique_id "aiDzSe9kvWNDCDXoHf-3swAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 22:31:05
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 18:30:58.856657 2026] [security2:error] [pid 15038:tid 15038] [client 172.70.248.48:10977] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.soonerstone.com"] [uri "/.git/config"] [unique_id "ah9Zoqd_Nnfr1RBIj2tBZQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 17:07:48
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 13:07:43.981053 2026] [security2:error] [pid 11095:tid 11095] [client 172.70.248.48:13567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tangex.com"] [uri "/.git/config"] [unique_id "ah8N35YJcE3U42M0EdAVpAAAACQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
RootOPSOVH
2026-06-02 06:36:36
(1 month ago)
GET /wp-admin/install.php?step=1 | UA: http://rootops.ovh/wp-admin/install.php?step=1
Web Spam
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 06:22:43
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 02:22:38.614488 2026] [security2:error] [pid 26747:tid 26747] [client 172.70.248.48:10639] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jordanware.com"] [uri "/.git/config"] [unique_id "ah52rjodL-JM6gIvYKzGhQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-05-29 22:07:38
(1 month ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-28.
show less
Web App Attack
SSH
Hacking