๐ฉ๐ช
www.mammazone.it
2026-06-29 08:27:43
(1 day ago)
[Mon Jun 29 10:27:43.029933 2026] [proxy_fcgi:error] [pid 4060210] [client 172.70.248.59:13850] AH01 ...
show more
[Mon Jun 29 10:27:43.029933 2026] [proxy_fcgi:error] [pid 4060210] [client 172.70.248.59:13850] AH01071: Got error 'Primary script unknown'
[Mon Jun 29 10:27:43.316413 2026] [proxy_fcgi:error] [pid 4060210] [client 172.70.248.59:13850] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
๐ฉ๐ช
www.mammazone.it
2026-06-22 06:16:33
(1 week ago)
[Mon Jun 22 08:16:32.211310 2026] [proxy_fcgi:error] [pid 2302009] [client 172.70.248.59:11127] AH01 ...
show more
[Mon Jun 22 08:16:32.211310 2026] [proxy_fcgi:error] [pid 2302009] [client 172.70.248.59:11127] AH01071: Got error 'Primary script unknown'
[Mon Jun 22 08:16:32.367194 2026] [proxy_fcgi:error] [pid 2302009] [client 172.70.248.59:11127] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
๐ฌ๐ง
OptimusGO
2026-06-22 02:44:14
(1 week ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-06-22 03:44:14 UTC
Log evidence:
172.70.248.59 - - [22/Jun/2026:03:44:09 +0100] "GET /s/533313e24373e21323e2430313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 404 118 "-" "Mozilla/5.0 (l9scan/2.0.533313e24373e21323e2430313; +https://leakix.net)"
06/22/2026-03:44:09.900992 [**] [1:2049255:1] ET SCAN LeakIX Inbound User-Agent [**] [Classification: Misc activity] [Priority: 3] {TCP} 172.70.248.59:11123 -> 185.127.18.66:80
show less
Port Scan
Brute-Force
๐ท๐บ
DZBOT
2026-06-18 17:46:45
(1 week ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 17:00:18
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 13:00:11.543017 2026] [security2:error] [pid 25518:tid 25518] [client 172.70.248.59:14076] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stats.cmabiblequizzing.org"] [uri "/.git/config"] [unique_id "ajLSmz1A_vPbVIfKIcKTPQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
JPPO
2026-06-07 11:26:59
(3 weeks ago)
Port 443 : GET /.git or /.git/HEAD, /.git/config ... /.DS_store
Web App Attack
Anonymous
2026-06-02 20:57:40
(3 weeks ago)
172.70.248.59 - - [02/Jun/2026:20:57:39 +0000] "GET /.git/config HTTP/1.1" 404 17328 "-" "Mozilla/5. ...
show more
172.70.248.59 - - [02/Jun/2026:20:57:39 +0000] "GET /.git/config HTTP/1.1" 404 17328 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/127.0 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-02 20:05:30
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 18:11:43
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 14:11:35.740667 2026] [security2:error] [pid 27472:tid 27472] [client 172.70.248.59:10840] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wcurtislloyd.com"] [uri "/.git/config"] [unique_id "ah8c140t5zDRE7YFyJWkfgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 16:34:57
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 12:34:51.964835 2026] [security2:error] [pid 18231:tid 18235] [client 172.70.248.59:10162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jeanpaullederer.com"] [uri "/.git/config"] [unique_id "ah8GK6JozyhZKsAskKVakgAAAUI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 16:04:23
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 12:04:17.118808 2026] [security2:error] [pid 2322:tid 2322] [client 172.70.248.59:11107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idledog.com"] [uri "/.git/config"] [unique_id "ah7_AT0YCHmDf8sN3un8VAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 14:24:16
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.248.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 10:24:11.284865 2026] [security2:error] [pid 27552:tid 27552] [client 172.70.248.59:11163] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "troyhilldental.com"] [uri "/.git/config"] [unique_id "ah7ni4EsdbFsxWRtt4tACAAAAFM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-31 21:30:00
(4 weeks ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/install.php
Web App Attack
๐ฉ๐ช
www.mammazone.it
2026-05-29 18:13:00
(1 month ago)
[Fri May 29 20:13:00.139873 2026] [proxy_fcgi:error] [pid 435943] [client 172.70.248.59:13129] AH010 ...
show more
[Fri May 29 20:13:00.139873 2026] [proxy_fcgi:error] [pid 435943] [client 172.70.248.59:13129] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-05-27 00:11:45
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack