๐ฆ๐ฑ
router.al
2026-07-02 22:12:44
(1 day ago)
07/02/2026-22:12:44.272752 172.71.164.5 Protocol: 6 ET SCAN LeakIX Inbound User-Agent
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-02 15:35:11
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:35:07.529218 2026] [security2:error] [pid 1848:tid 1848] [client 172.71.164.5:10829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "truecontrarian.com"] [uri "/.git/config"] [unique_id "akaFK1LRkYai9j_h8jazZQAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 11:28:36
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:28:29.081105 2026] [security2:error] [pid 32075:tid 32088] [client 172.71.164.5:12581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gorealtors.com"] [uri "/.git/config"] [unique_id "akZLXdZkpgP19FVTp2iIeQAAAIo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 10:41:20
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:41:16.018142 2026] [security2:error] [pid 23954:tid 23954] [client 172.71.164.5:13489] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "doodlemags.com"] [uri "/.git/config"] [unique_id "akZATNfCPLhwPGjVoloQ4wAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 09:31:30
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:31:23.338967 2026] [security2:error] [pid 570:tid 588] [client 172.71.164.5:13093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barneysprecision.com"] [uri "/.git/config"] [unique_id "akYv6-Rh2rd0JyqutkIzFgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
sc user
2026-07-01 23:39:02
(2 days ago)
Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ...
show more
Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy.
show less
Bad Web Bot
Web App Attack
Port Scan
๐บ๐ธ
mawan
2026-06-29 19:18:37
(4 days ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ฉ๐ช
www.mammazone.it
2026-06-26 01:01:28
(1 week ago)
[Fri Jun 26 03:01:20.636207 2026] [proxy_fcgi:error] [pid 3327563] [client 172.71.164.5:13209] AH010 ...
show more
[Fri Jun 26 03:01:20.636207 2026] [proxy_fcgi:error] [pid 3327563] [client 172.71.164.5:13209] AH01071: Got error 'Primary script unknown'
[Fri Jun 26 03:01:27.299353 2026] [proxy_fcgi:error] [pid 3299966] [client 172.71.164.5:12830] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
๐ฏ๐ต
Valhalla
2026-06-24 20:55:50
(1 week ago)
/.env
Hacking
Web App Attack
๐ฉ๐ช
BiancaNL
2026-06-24 20:46:15
(1 week ago)
Fail2Ban: jail=nginx-exploit-probes on <fqdn> (port=<port>)
Hacking
๐ฉ๐ช
BiancaNL
2026-06-22 11:41:50
(1 week ago)
Fail2Ban: jail=nginx-exploit-probes on <fqdn> (port=<port>)
Hacking
๐ท๐บ
DZBOT
2026-06-14 03:49:29
(2 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
Anonymous
2026-06-07 10:21:05
(3 weeks ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 15:24:07
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 11:24:03.995189 2026] [security2:error] [pid 31784:tid 31784] [client 172.71.164.5:13736] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oruhu.org"] [uri "/.git/config"] [unique_id "aiGYkxThkO9XT7OKeNL7aQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 19:11:38
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 15:11:32.401325 2026] [security2:error] [pid 455:tid 455] [client 172.71.164.5:9402] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "namadiscount.com"] [uri "/.git/config"] [unique_id "ah8q5KCvx6Xz-nnhLGW-WgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack