๐ฉ๐ช
www.mammazone.it
2026-07-09 08:14:35
(9 hours ago)
[Thu Jul 09 10:14:28.512970 2026] [proxy_fcgi:error] [pid 1482409] [client 172.70.47.124:10192] AH01 ...
show more
[Thu Jul 09 10:14:28.512970 2026] [proxy_fcgi:error] [pid 1482409] [client 172.70.47.124:10192] AH01071: Got error 'Primary script unknown', referer: http://underdomotic.fabiodirauso.it/test.php
[Thu Jul 09 10:14:34.374926 2026] [proxy_fcgi:error] [pid 1482409] [client 172.70.47.124:10192] AH01071: Got error 'Primary script unknown', referer: http://underdomotic.fabiodirauso.it/info.php
...
show less
Hacking
๐ง๐ฌ
Stoyko Stoykov
2026-07-08 12:20:18
(1 day ago)
172.70.47.124 - - [08/Jul/2026:15:20:15 +0300] "GET /.env HTTP/2.0" 404 176 "-" "Mozilla/5.0 (Window ...
show more
172.70.47.124 - - [08/Jul/2026:15:20:15 +0300] "GET /.env HTTP/2.0" 404 176 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
...
show less
Hacking
Web App Attack
Anonymous
2026-07-04 19:22:50
(4 days ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐ฌ๐ง
cg-design.co.uk
2026-06-27 05:06:44
(1 week ago)
(mod_security) mod_security triggered on hostname [redacted] 172.70.47.124 (-)
SQL Injection
Anonymous
2026-06-26 21:36:06
(1 week ago)
172.70.47.124 - - [26/Jun/2026:23:35:47 +0200] "GET /wp-content/plugins/sparkpost-mail/sparkpost-mai ...
show more
172.70.47.124 - - [26/Jun/2026:23:35:47 +0200] "GET /wp-content/plugins/sparkpost-mail/sparkpost-mail.php HTTP/1.1" 403 12583 "https://unistayzm.com/" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0"
172.70.47.124 - - [26/Jun/2026:23:35:47 +0200] "GET /wp-content/plugins/wp-sendgrid/includes/settings.php HTTP/1.1" 403 12583 "https://unistayzm.com/" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0"
172.70.47.124 - - [26/Jun/2026:23:35:48 +0200] "GET /wp-content/plugins/easy-wp-smtp/includes/class-easywpsmtp-admin.php HTTP/1.1" 403 12583 "https://unistayzm.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:132.0) Gecko/20100101 Firefox/132.0"
172.70.47.124 - - [26/Jun/2026:23:35:49 +0200] "GET /wp-content/plugins/sendinblue-subscribe-form-and-wc/sendinblue.php HTTP/1.1" 403 12583 "https://unistayzm.com/" "Mozilla/5.0 (Linux; Android 14; SM-S928B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
172.70.47.124 - -
...
show less
Bad Web Bot
Web App Attack
Anonymous
2026-06-26 19:10:33
(1 week ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ง๐ฌ
Stoyko Stoykov
2026-06-24 16:11:03
(2 weeks ago)
172.70.47.124 - - [24/Jun/2026:19:11:03 +0300] "GET /.env HTTP/2.0" 404 176 "-" "Mozilla/5.0 (Window ...
show more
172.70.47.124 - - [24/Jun/2026:19:11:03 +0300] "GET /.env HTTP/2.0" 404 176 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
...
show less
Hacking
Web App Attack
Anonymous
2026-06-19 13:02:09
(2 weeks ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 12:07:53
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.47.124 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.47.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 08:07:47.004311 2026] [security2:error] [pid 14641:tid 14649] [client 172.70.47.124:13973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ciclos.soluciona.biz"] [uri "/.git/config"] [unique_id "ajKOE9uqB_AcMEa95xq1QQAAAUU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-17 00:24:16
(3 weeks ago)
Abuse Detected (2)
Brute-Force
Web App Attack
๐ฌ๐ง
cg-design.co.uk
2026-06-10 19:08:55
(4 weeks ago)
(mod_security) mod_security triggered on hostname [redacted] 172.70.47.124 (-)
SQL Injection
๐ฉ๐ช
www.mammazone.it
2026-05-03 23:11:39
(2 months ago)
underdomotic.fabiodirauso.it:443 172.70.47.124 - - [04/May/2026:01:11:36 +0200] "GET /.git/logs/HEAD ...
show more
underdomotic.fabiodirauso.it:443 172.70.47.124 - - [04/May/2026:01:11:36 +0200] "GET /.git/logs/HEAD HTTP/1.1" 404 418 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
underdomotic.fabiodirauso.it:443 172.70.47.124 - - [04/May/2026:01:11:36 +0200] "GET /.env~ HTTP/1.1" 404 418 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Hacking
๐บ๐ธ
mawan
2026-05-02 14:13:21
(2 months ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐บ๐ธ
mawan
2026-04-26 19:43:37
(2 months ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ฉ๐ช
www.mammazone.it
2026-04-05 05:49:57
(3 months ago)
underdomotic.fabiodirauso.it:443 172.70.47.124 - - [05/Apr/2026:07:49:50 +0200] "GET /.git/HEAD HTTP ...
show more
underdomotic.fabiodirauso.it:443 172.70.47.124 - - [05/Apr/2026:07:49:50 +0200] "GET /.git/HEAD HTTP/1.1" 404 4231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36"
underdomotic.fabiodirauso.it:443 172.70.47.124 - - [05/Apr/2026:07:49:50 +0200] "GET /config.json HTTP/1.1" 404 418 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36"
...
show less
Hacking