πΊπΈ
TPI-Abuse
2026-07-02 17:19:47
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 13:19:40.592029 2026] [security2:error] [pid 30832:tid 30832] [client 172.71.148.51:14302] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rgnexcore.com"] [uri "/.git/config"] [unique_id "akadrJF_PfMEQ8_OOj5fNgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 11:15:29
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:15:23.506642 2026] [security2:error] [pid 10773:tid 10773] [client 172.71.148.51:10198] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fritsknuf.com"] [uri "/.git/config"] [unique_id "akZIS2ReAlG_NXCBbIXS3wAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-29 00:43:05
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 20:42:58.724722 2026] [security2:error] [pid 18487:tid 18487] [client 172.71.148.51:9438] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thainotarycalifornia.bluerobinpartners.com"] [uri "/.git/config"] [unique_id "akG_kkEzlCkZA5egO1lyRQAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πͺ
voormedia
2026-06-28 04:19:33
(4 days ago)
Accessed trap at '/wp-admin/install.php'
Web App Attack
π§πͺ
voormedia
2026-06-21 18:07:22
(1 week ago)
Accessed trap at '/wp-admin/install.php'
Web App Attack
π§πͺ
voormedia
2026-06-19 19:51:21
(1 week ago)
Accessed trap at '/wp-admin/install.php'
Web App Attack
π«π·
Baking333
2026-06-18 15:22:41
(2 weeks ago)
[redacted] 172.71.148.51 - - [18/Jun/2026:16:22:39 +0100] "GET /phpinfo HTTP/2.0" 301 199 "http://[r ...
show more
[redacted] 172.71.148.51 - - [18/Jun/2026:16:22:39 +0100] "GET /phpinfo HTTP/2.0" 301 199 "http://[redacted]/phpinfo" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" [redacted] 172.71.148.51 - - [18/Jun/2026:16:22:39 +0100] "GET /fr/phpinfo/ HTTP/2.0" 404 24862 "https://[redacted]/phpinfo" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-08 21:04:12
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 17:04:08.746829 2026] [security2:error] [pid 17285:tid 17285] [client 172.71.148.51:13960] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thunder-kings.hodlmoser.com"] [uri "/.git/config"] [unique_id "aicuSDRIQLgh7V7C9k3p-QAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-06-06 13:05:09
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
π©πͺ
ger-stg-sifi1
2026-06-04 19:41:53
(4 weeks ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-03 21:59:06
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 17:59:01.080094 2026] [security2:error] [pid 22951:tid 22951] [client 172.71.148.51:9430] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nrvoutdoors.net"] [uri "/.git/config"] [unique_id "aiCjpb9TF8eX1TPNrLy3rwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-02 10:30:53
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 06:30:45.651398 2026] [security2:error] [pid 26728:tid 26728] [client 172.71.148.51:13785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "clinicacero.com"] [uri "/.git/config"] [unique_id "ah6w1UZqhvDJmy2FfIf77AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-02 08:50:37
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 04:50:31.964945 2026] [security2:error] [pid 20875:tid 20875] [client 172.71.148.51:11236] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drgweich.com"] [uri "/.git/config"] [unique_id "ah6ZV7NVVNxxEvJfx_By1AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-02 02:17:32
(1 month ago)
(mod_security) mod_security (id:949110) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:949110) triggered by 172.71.148.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 22:17:28.786895 2026] [security2:error] [pid 1003:tid 1003] [client 172.71.148.51:13837] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "dcagroupusa.com"] [uri "/.git/config"] [unique_id "ah49OARX10mj6AXYs8U2BAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
DZBOT
2026-05-20 16:15:17
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack