๐บ๐ธ
mawan
2026-07-07 23:38:03
(13 hours ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 14:18:19
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 10:18:12.463220 2026] [security2:error] [pid 30539:tid 30539] [client 172.71.148.48:10732] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "richardlyne.com"] [uri "/.git/config"] [unique_id "akZzJAje0H4Q8KONEJO5kQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 11:32:23
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:32:20.221999 2026] [security2:error] [pid 22899:tid 22899] [client 172.71.148.48:12800] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grupo-visalud.com"] [uri "/.git/config"] [unique_id "akZMRI4PLwgFNwoP0Bx_fwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 11:17:01
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:16:55.484420 2026] [security2:error] [pid 28748:tid 28748] [client 172.71.148.48:11157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fundingworkingcapital.com"] [uri "/.git/config"] [unique_id "akZIp7vDRjwb1OXgrCPnEQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-01 04:35:10
(1 week ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐บ๐ธ
TPI-Abuse
2026-06-28 03:21:19
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 23:21:15.984369 2026] [security2:error] [pid 31799:tid 31799] [client 172.71.148.48:12800] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vtwins.us"] [uri "/.git/config"] [unique_id "akCTKyHeynzKUiRJsEBEMgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 01:34:57
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 21:34:48.339287 2026] [security2:error] [pid 24297:tid 24297] [client 172.71.148.48:12468] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cedula3.com"] [uri "/.env.save"] [unique_id "akB6OK2tS9bmCejXmHUozAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
COMPLEX
2026-06-26 03:22:30
(1 week ago)
Unsolicited TCP traffic | Action: DROP | Port 8443
Brute-Force
๐ณ๐ฑ
COMPLEX
2026-06-23 00:04:21
(2 weeks ago)
Unsolicited TCP traffic | Action: DROP | Port 8443
Brute-Force
๐ฆ๐ฑ
router.al
2026-06-21 04:07:23
(2 weeks ago)
06/21/2026-04:07:23.362373 172.71.148.48 Protocol: 6 GPL WEB_SERVER 403 Forbidden
Port Scan
๐ท๐บ
DZBOT
2026-06-14 02:34:54
(3 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ซ๐ฎ
nNordic
2026-06-09 09:15:56
(4 weeks ago)
Connection attempt blocked by IDS/IPS from 172.71.148.48/32
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-08 19:50:46
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:50:42.631519 2026] [security2:error] [pid 27430:tid 27430] [client 172.71.148.48:14090] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "etoyfun.vittariadesign.com"] [uri "/.git/config"] [unique_id "aicdEowktubgsng75X516wAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-06 18:11:23
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 14:11:19.186868 2026] [security2:error] [pid 22830:tid 22830] [client 172.71.148.48:11752] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "odinscelestialtrust.org.rejuvenationsystems.com"] [uri "/.git/config"] [unique_id "aiRixxfJ5R35x80FKO8pFwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 16:22:40
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 12:22:34.285478 2026] [security2:error] [pid 2620:tid 2620] [client 172.71.148.48:12990] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bndtreats903.com"] [uri "/.git/config"] [unique_id "aiL3ymkhvdvVrcPwnhqYsAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack