๐บ๐ธ
TPI-Abuse
2026-07-02 11:21:31
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:21:27.764661 2026] [security2:error] [pid 5627:tid 5627] [client 172.71.144.50:9480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "genesis-one.com"] [uri "/.git/config"] [unique_id "akZJt6LbF43c7nP8KtWOYwAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 10:18:23
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:18:17.955512 2026] [security2:error] [pid 22029:tid 22054] [client 172.71.144.50:12564] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "condominium-management-chicago.com"] [uri "/.git/config"] [unique_id "akY66QpVHw23dBeX-GgPtQAAARc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 18:41:28
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 14:41:21.466152 2026] [security2:error] [pid 25732:tid 25732] [client 172.71.144.50:10828] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "asapstarsmogcheck.smogsandiego.com"] [uri "/.git/config"] [unique_id "akFq0T7zbN4aYRNObUAHxwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-26 12:18:07
(1 week ago)
[Fri Jun 26 14:18:05.856134 2026] [authz_core:error] [pid 13202] [client 172.71.144.50:10641] AH0163 ...
show more
[Fri Jun 26 14:18:05.856134 2026] [authz_core:error] [pid 13202] [client 172.71.144.50:10641] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Jun 26 14:18:06.216143 2026] [authz_core:error] [pid 13202] [client 172.71.144.50:10641] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Jun 26 14:18:06.338222 2026] [authz_core:error] [pid 13202] [client 172.71.144.50:10641] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 01:20:57
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 21:20:52.589811 2026] [security2:error] [pid 1079:tid 1079] [client 172.71.144.50:12772] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bosch.pamplonaserviciotecnico.com"] [uri "/.env.local"] [unique_id "ajc8dIC2d1Cyjl_WK3vn1QAAAAI"], referer: https://www.google.com/search?q=www.bosch.pamplonaserviciotecnico.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-14 03:38:44
(2 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ซ๐ฎ
Erpelstolz
2026-06-11 01:10:15
(3 weeks ago)
external host: 172.71.144.50 - - [11/Jun/2026:03:10:15 +0200] "GET /wp-admin/install.php?step=1 HTTP ...
show more
external host: 172.71.144.50 - - [11/Jun/2026:03:10:15 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 301 325 "-" "http://erpelstolz.com/wp-admin/install.php?step=1" CF-Ray:a09cbc285af7dc78-FRA CF-IP:-
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 16:09:00
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 12:08:56.809675 2026] [security2:error] [pid 15725:tid 15725] [client 172.71.144.50:12365] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "patrickodougherty.com"] [uri "/.git/config"] [unique_id "ah8AGKlcYiFpyUx5PoXlKwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 14:09:03
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 10:08:56.508292 2026] [security2:error] [pid 8744:tid 8767] [client 172.71.144.50:11717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "expozium.com"] [uri "/.git/config"] [unique_id "ah7j-GyOdFZYFncl_imZ3QAAAJQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Kreapptivo
2026-06-02 04:18:14
(1 month ago)
172.71.144.50 - - [02/Jun/2026:06:18:11 +0200] "GET /.git/config HTTP/2.0" 404 822 "-" "Wget/1.21.3 ...
show more
172.71.144.50 - - [02/Jun/2026:06:18:11 +0200] "GET /.git/config HTTP/2.0" 404 822 "-" "Wget/1.21.3 (linux-gnu)"
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-02 02:05:27
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ท๐บ
DZBOT
2026-05-20 05:08:35
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-14 05:21:03
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 01:20:59.844131 2026] [security2:error] [pid 28726:tid 28726] [client 172.71.144.50:14018] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wgs.cc"] [uri "/.env.backup"] [unique_id "agVbuxeWd_9Eig6aNTqpcwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-05-12 23:33:16
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
Anonymous
2026-05-12 18:28:17
(1 month ago)
[Tue May 12 20:28:15.756062 2026] [authz_core:error] [pid 32081] [client 172.71.144.50:11588] AH0163 ...
show more
[Tue May 12 20:28:15.756062 2026] [authz_core:error] [pid 32081] [client 172.71.144.50:11588] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Tue May 12 20:28:15.885588 2026] [authz_core:error] [pid 32081] [client 172.71.144.50:11588] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Tue May 12 20:28:16.107178 2026] [authz_core:error] [pid 32081] [client 172.71.144.50:11588] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack