๐บ๐ธ
TPI-Abuse
2026-07-15 21:03:27
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 17:03:21.070763 2026] [security2:error] [pid 4817:tid 4817] [client 172.71.172.166:13240] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.dandksupply.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.dandksupply.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "alf1mWChLd_rNLss-TgYFwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-07-11 19:59:24
(6 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ง๐พ
lns.bz
2026-07-04 13:08:50
(1 week ago)
Too many 404 requests [BY]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 08:51:54
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 04:51:50.770840 2026] [security2:error] [pid 26322:tid 26332] [client 172.71.172.166:9293] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "8mm-stockfootage.com"] [uri "/.git/config"] [unique_id "akYmpquvruljczXBsqepMwAAAQc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
COMPLEX
2026-06-26 03:21:36
(3 weeks ago)
Unsolicited TCP traffic | Action: DROP | Port 8443
Brute-Force
๐ท๐บ
DZBOT
2026-06-16 13:45:49
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 10:06:48
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 06:06:43.050484 2026] [security2:error] [pid 4217:tid 4217] [client 172.71.172.166:11070] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sfsdesignsproductions.com"] [uri "/.git/config"] [unique_id "ajEgM6CCN3fqYmEQKgv7IAAAACU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 00:43:37
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 20:43:30.845085 2026] [security2:error] [pid 29612:tid 29612] [client 172.71.172.166:10844] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "worthhistory.org"] [uri "/.git/config"] [unique_id "aioEsq-yPrBOQ6IPpeI-CAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-09 02:03:50
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 22:03:42.709193 2026] [security2:error] [pid 28111:tid 28111] [client 172.71.172.166:11261] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.fsmfl.com"] [uri "/.git/config"] [unique_id "aid0fv8_6Yj7DSq04NIXeAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-06-08 01:40:28
(1 month ago)
Try to access /groepsuitjedrachten/.git/config
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-06-06 17:51:00
(1 month ago)
dot file probe
Web App Attack
๐จ๐ญ
TheCoon
2026-06-05 23:30:01
(1 month ago)
Automated: Credential theft attempt - JSON bomb served
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-04 20:19:10
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 16:19:06.495591 2026] [security2:error] [pid 825:tid 825] [client 172.71.172.166:14156] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mariettacaseyclub.org"] [uri "/.git/config"] [unique_id "aiHduuYxtDIp22JXsa0bXAAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Rip
2026-06-04 03:31:20
(1 month ago)
Automated recon attempt targeting restricted and sensitive paths.
Web App Attack
๐บ๐ธ
mnsf
2026-06-02 11:05:11
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack