๐บ๐ธ
mawan
2026-07-03 01:57:36
(8 hours ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ฆ๐ฑ
router.al
2026-07-02 14:37:45
(19 hours ago)
07/02/2026-14:37:45.307619 172.70.46.214 Protocol: 6 GPL WEB_SERVER 403 Forbidden
Port Scan
Anonymous
2026-06-26 18:59:15
(6 days ago)
172.70.46.214 - - [26/Jun/2026:18:58:54 +0000] "GET /configuration.php HTTP/2.0" 404 198 "http://inf ...
show more
172.70.46.214 - - [26/Jun/2026:18:58:54 +0000] "GET /configuration.php HTTP/2.0" 404 198 "http://infostore.eladiogarcia.com/uploads/../configuration.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.7049.84 Safari/537.36" "96.241.104.45,195.178.110.102"
172.70.46.214 - - [26/Jun/2026:18:58:54 +0000] "GET /uploads/%2e%2e/configuration.php HTTP/2.0" 404 198 "http://infostore.eladiogarcia.com/uploads/%2e%2e/configuration.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.7049.84 Safari/537.36" "98.116.88.203,195.178.110.102"
172.70.46.214 - - [26/Jun/2026:18:58:54 +0000] "GET /uploads%252e%252e%252fconfiguration.php HTTP/2.0" 404 198 "http://infostore.eladiogarcia.com/uploads%252e%252e%252fconfiguration.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.7049.84 Safari/537.36" "98.116.88.203,195.178.110.102"
172.70.46.214 - - [26/Jun/2026:18:58:55 +0000] "GET /sites/default
...
show less
Port Scan
Brute-Force
๐บ๐ธ
mawan
2026-06-26 06:19:43
(1 week ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
Anonymous
2026-06-24 05:55:57
(1 week ago)
172.70.46.214 - - [24/Jun/2026:07:55:47 +0200] "GET /app/.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Wi ...
show more
172.70.46.214 - - [24/Jun/2026:07:55:47 +0200] "GET /app/.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [24/Jun/2026:07:55:47 +0200] "GET /src/.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [24/Jun/2026:07:55:48 +0200] "GET /backend/.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [24/Jun/2026:07:55:48 +0200] "GET /api/.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [24/Jun/2026:07:55:48 +0200] "GET /config.php HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [24/Jun/2026:07:55:48 +0200] "GET /settings.php HTTP/1.1" 404 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [24/Jun/2026:07:55:48 +0200] "GET /config.php.bak HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Wind
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
mawan
2026-06-22 02:11:54
(1 week ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐บ๐ธ
mawan
2026-06-20 13:32:28
(1 week ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
Anonymous
2026-06-19 01:16:13
(2 weeks ago)
172.70.46.214 - - [19/Jun/2026:03:15:57 +0200] "GET /.git/config HTTP/1.1" 403 124 "-" "Mozilla/5.0 ...
show more
172.70.46.214 - - [19/Jun/2026:03:15:57 +0200] "GET /.git/config HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [19/Jun/2026:03:15:58 +0200] "GET /.env.production HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [19/Jun/2026:03:15:59 +0200] "GET /.env.test HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [19/Jun/2026:03:16:00 +0200] "GET /.env.example HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [19/Jun/2026:03:16:00 +0200] "GET /.env.dev HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [19/Jun/2026:03:16:01 +0200] "GET /.env.old HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
172.70.46.214 - - [19/Jun/2026:03:16:03 +0200] "GET /config/.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Wi
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
mawan
2026-06-16 14:48:48
(2 weeks ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-03 22:04:21
(4 weeks ago)
Auto-ban: >3000 req/min op 2026-06-03
Web App Attack
SSH
Hacking
Anonymous
2026-05-29 15:50:25
(1 month ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-27 16:25:33
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.46.214 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.46.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 12:25:27.441194 2026] [security2:error] [pid 1092:tid 1092] [client 172.70.46.214:9634] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "frmoto24montmelo.com"] [uri "/.env.production"] [unique_id "ahca9-rwL5E5BC8QKGJ-pgAAAAw"], referer: https://www.google.com/search?q=frmoto24montmelo.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-14 05:34:04
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.46.214 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.46.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 01:33:59.420377 2026] [security2:error] [pid 24590:tid 24590] [client 172.70.46.214:9509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "preskitpc.com"] [uri "/.env.production"] [unique_id "agVexyaz1aYgwlG2Y9ltvgAAABk"], referer: https://www.google.com/search?q=preskitpc.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Dechavanne
2026-04-03 12:00:12
(2 months ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐บ๐ธ
mawan
2026-03-24 00:50:02
(3 months ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack