Anonymous
2026-07-03 13:40:32
(22 hours ago)
[Fri Jul 03 15:40:31.089163 2026] [authz_core:error] [pid 27732] [client 172.70.250.160:11661] AH016 ...
show more
[Fri Jul 03 15:40:31.089163 2026] [authz_core:error] [pid 27732] [client 172.70.250.160:11661] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Jul 03 15:40:31.914856 2026] [authz_core:error] [pid 27732] [client 172.70.250.160:11661] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Jul 03 15:40:32.138144 2026] [authz_core:error] [pid 27732] [client 172.70.250.160:11661] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐ฉ๐ช
acadeova
2026-06-01 06:18:39
(1 month ago)
๐จ Recon detected (nft drop)
SRC=172.70.250.160
Observed=TCP dpt=80 in=enp0s6 ttl=59
Time=recent(jour ...
show more
๐จ Recon detected (nft drop)
SRC=172.70.250.160
Observed=TCP dpt=80 in=enp0s6 ttl=59
Time=recent(journalctl: 10 minutes ago)
Assessment=Generic scanning / reconnaissance (PORT_SCAN)
show less
Port Scan
๐ฆ๐บ
trentwiles.com
2026-05-19 21:25:01
(1 month ago)
Unauthorized connection attempt detected from IP address 172.70.250.160 to port 443 [SYD]
Port Scan
๐ฆ๐บ
trentwiles.com
2026-05-19 05:42:24
(1 month ago)
Unauthorized connection attempt detected from IP address 172.70.250.160 to port 80 [SYD]
Port Scan
๐บ๐ธ
WellSpring
2026-05-18 11:14:03
(1 month ago)
wordpress scan on 847.today/wp-admin/install.php โ WellSpr.ing/NetSentinel civic-AI security layer
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-10 19:02:23
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.250.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.250.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 15:02:18.891560 2026] [security2:error] [pid 13871:tid 13871] [client 172.70.250.160:10206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bryteandbroderick.org"] [uri "/.env.dev"] [unique_id "agDWOkgwH8FMfALe0nm7CwAAABo"], referer: https://www.google.com/search?q=bryteandbroderick.org
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
trentwiles.com
2026-05-02 18:54:57
(2 months ago)
Unauthorized connection attempt detected from IP address 172.70.250.160 to port 443 [SYD]
Port Scan
๐บ๐ธ
TPI-Abuse
2026-04-30 17:37:42
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.250.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.250.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 13:37:35.283155 2026] [security2:error] [pid 16475:tid 16475] [client 172.70.250.160:12012] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.aifstudio.com"] [uri "/.git/config"] [unique_id "afOTX-IVaqcu5kaYxX0gLQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
trentwiles.com
2026-04-24 21:07:48
(2 months ago)
Unauthorized connection attempt detected from IP address 172.70.250.160 to port 80 [SYD]
Port Scan
๐ซ๐ท
dynamix
2026-04-06 12:01:02
(2 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 16:09:31
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.250.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.250.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 12:09:19.357437 2026] [security2:error] [pid 22605:tid 22605] [client 172.70.250.160:11114] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.wilhelminas.biz"] [uri "/.git/HEAD"] [unique_id "adE3r1Ec5ZxyntaztCFsKgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
paulo.apoloni
2026-04-04 11:10:50
(3 months ago)
172.70.250.160 - - [04/Apr/2026:08:10:49 -0300] "GET /.git/HEAD HTTP/1.1" 404 118 "-" "-"
172.70.250 ...
show more
172.70.250.160 - - [04/Apr/2026:08:10:49 -0300] "GET /.git/HEAD HTTP/1.1" 404 118 "-" "-"
172.70.250.160 - - [04/Apr/2026:08:10:50 -0300] "GET /.git/logs/HEAD HTTP/1.1" 404 118 "-" "-"
172.70.250.160 - - [04/Apr/2026:08:10:50 -0300] "GET /.env HTTP/1.1" 404 118 "-" "-"
172.70.250.160 - - [04/Apr/2026:08:10:50 -0300] "GET /.git/refs/heads/main HTTP/1.1" 404 118 "-" "-"
172.70.250.160 - - [04/Apr/2026:08:10:50 -0300] "GET /.env.development HTTP/1.1" 404 118 "-" "-"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 07:07:15
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.250.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.250.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 03:07:07.325085 2026] [security2:error] [pid 600:tid 607] [client 172.70.250.160:12608] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.newtrendmag.org"] [uri "/.git/config"] [unique_id "adC4mxx-DvVmKQHY-e76rgAAAQM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-04-03 21:05:50
(3 months ago)
Scanning/Probing (15)
Brute-Force
Web App Attack
๐ซ๐ท
masterguru
2026-03-31 12:13:21
(3 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:cf-worker. (5025-196)
Hacking