๐บ๐ธ
mawan
2026-06-30 10:56:20
(5 hours ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐บ๐ธ
oncord
2026-06-18 20:18:01
(1 week ago)
Form spam
Web Spam
๐บ๐ธ
Rip
2026-06-08 09:00:16
(3 weeks ago)
Automated recon attempt targeting restricted and sensitive paths.
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 03:42:15
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 23:42:11.904239 2026] [security2:error] [pid 1044:tid 1044] [client 172.71.148.45:14165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ieas.org"] [uri "/.git/config"] [unique_id "aiTokx3MzMH9kHMlBv2BCAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 18:24:02
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 14:23:59.194925 2026] [security2:error] [pid 11498:tid 11498] [client 172.71.148.45:10430] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fluffmoo.org"] [uri "/.git/config"] [unique_id "aiHCv_UaFFUMgyNn6kQ_VAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 00:11:40
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 20:11:34.507596 2026] [security2:error] [pid 10993:tid 10993] [client 172.71.148.45:10267] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oss-in-atm.info"] [uri "/.git/config"] [unique_id "aiDCtr_rov6LFU55QFKpPgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 13:14:41
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 09:14:37.740568 2026] [security2:error] [pid 22734:tid 22734] [client 172.71.148.45:12483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jonesypop.com"] [uri "/.git/config"] [unique_id "ah7XPaSmmPpZDE3w2dQ6JAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-05-28 22:05:37
(1 month ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-27.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-24 13:03:46
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 09:03:42.877848 2026] [security2:error] [pid 18595:tid 18704] [client 172.71.148.45:11224] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rogamur.com"] [uri "/.git/config"] [unique_id "ahL3LnJSF4G3I2RvGAcPaQAAAgQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-19 02:30:06
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 22:30:01.236126 2026] [security2:error] [pid 8913:tid 8913] [client 172.71.148.45:12334] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.psikeep.com"] [uri "/.env.vercel"] [unique_id "agvLKd060_UBWjgyguhWOgAAACY"], referer: https://www.google.com/search?q=mail.psikeep.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-16 02:34:00
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 22:33:54.721660 2026] [security2:error] [pid 25788:tid 25788] [client 172.71.148.45:13373] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garyrankin.com"] [uri "/.env.dev"] [unique_id "agfXku6G8MQq_u7Q5_6RDAAAAAk"], referer: https://www.google.com/search?q=garyrankin.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-15 06:41:06
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 02:41:01.167887 2026] [security2:error] [pid 1746:tid 1746] [client 172.71.148.45:11832] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arsenalfordemocracy.com"] [uri "/.env.local"] [unique_id "aga__foUm6KiE8112_JReAAAAAU"], referer: https://www.google.com/search?q=arsenalfordemocracy.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
chengkev
2026-05-11 16:44:21
(1 month ago)
Esta IP fue detectada por CrowdSec, activando crowdsecurity/http-probing
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-08 14:26:35
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 10:26:30.683249 2026] [security2:error] [pid 15779:tid 15779] [client 172.71.148.45:14114] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "natursac.com"] [uri "/.git/config"] [unique_id "af3ylm5aMxbsdNeN3IIPTgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
octageeks.com
2026-05-05 04:06:14
(1 month ago)
Wordpress malicious attack:[octablocked]
Web App Attack