Anonymous
2026-07-17 05:38:48
(1 day ago)
172.71.99.79 - - [17/Jul/2026:07:38:47 +0200] "GET //website/wp-includes/wlwmanifest.xml HTTP/1.1" 4 ...
show more
172.71.99.79 - - [17/Jul/2026:07:38:47 +0200] "GET //website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 445 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.71.99.79 - - [17/Jul/2026:07:38:47 +0200] "GET //website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 249 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.71.99.79 - - [17/Jul/2026:07:38:47 +0200] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 445 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.71.99.79 - - [17/Jul/2026:07:38:47 +0200] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 249 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.71.99.79 - - [17/Jul/2026:07:38:47 +0200] "GET //news/wp-includes/wlwmanifest.xml HTTP/1.1
...
show less
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2026-07-16 04:23:43
(2 days ago)
Multiple WAF Violations
Web App Attack
๐ซ๐ท
dynamix
2026-07-13 06:59:33
(5 days ago)
Multiple WAF Violations
Web App Attack
๐ง๐ฌ
Stoyko Stoykov
2026-07-10 15:31:14
(1 week ago)
172.71.99.79 - - [10/Jul/2026:18:31:14 +0300] "GET /.env HTTP/2.0" 404 170 "-" "Mozilla/5.0 (Windows ...
show more
172.71.99.79 - - [10/Jul/2026:18:31:14 +0300] "GET /.env HTTP/2.0" 404 170 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36"
...
show less
Hacking
Web App Attack
๐ง๐ฌ
Stoyko Stoykov
2026-07-02 03:05:25
(2 weeks ago)
172.71.99.79 - - [02/Jul/2026:06:05:25 +0300] "GET //xmlrpc.php?rsd HTTP/2.0" 404 170 "-" "Mozilla/5 ...
show more
172.71.99.79 - - [02/Jul/2026:06:05:25 +0300] "GET //xmlrpc.php?rsd HTTP/2.0" 404 170 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 18:36:54
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.99.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.99.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 14:36:48.439437 2026] [security2:error] [pid 22028:tid 22028] [client 172.71.99.79:12075] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.shirtzz.com"] [uri "/.env.local"] [unique_id "akVeQLKa1za5713xsIAWMQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ฌ
Stoyko Stoykov
2026-06-30 13:19:11
(2 weeks ago)
172.71.99.79 - - [30/Jun/2026:16:19:10 +0300] "GET /.aws/credentials HTTP/2.0" 404 107 "-" "Mozilla/ ...
show more
172.71.99.79 - - [30/Jun/2026:16:19:10 +0300] "GET /.aws/credentials HTTP/2.0" 404 107 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1.2 Safari/605.1.15"
...
show less
Hacking
Web App Attack
๐ง๐ฌ
Stoyko Stoykov
2026-06-29 04:38:05
(2 weeks ago)
172.71.99.79 - - [29/Jun/2026:07:38:04 +0300] "GET /.well-known/security.txt HTTP/1.1" 301 162 "-" " ...
show more
172.71.99.79 - - [29/Jun/2026:07:38:04 +0300] "GET /.well-known/security.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.737313e28333e21323e2430313; +https://leakix.net)"
...
show less
Hacking
Web App Attack
๐ฆ๐บ
oncord
2026-06-27 11:13:42
(3 weeks ago)
Form spam
Web Spam
Anonymous
2026-06-24 07:38:12
(3 weeks ago)
172.71.99.79 - - [24/Jun/2026:09:38:12 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 ...
show more
172.71.99.79 - - [24/Jun/2026:09:38:12 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 249 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.71.99.79 - - [24/Jun/2026:09:38:12 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 445 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.71.99.79 - - [24/Jun/2026:09:38:12 +0200] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 445 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.71.99.79 - - [24/Jun/2026:09:38:12 +0200] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 249 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
172.71.99.79 - - [24/Jun/2026:09:38:12 +0200] "GET //wp/wp-includes/wlwmanifest.xml HT
...
show less
Brute-Force
Web App Attack
Anonymous
2026-06-19 17:45:46
(4 weeks ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 13:45:44
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.99.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.99.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 09:45:36.259884 2026] [security2:error] [pid 6668:tid 6668] [client 172.71.99.79:12858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lawrencehale.com"] [uri "/.git/config"] [unique_id "ajVIABrSH2-KoSvKWJ4_jgAAAB4"], referer: https://www.google.com/search?q=lawrencehale.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 21:05:08
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.99.79 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.99.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 17:04:56.803165 2026] [security2:error] [pid 9810:tid 9810] [client 172.71.99.79:24018] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beckersystems.com"] [uri "/.env.local"] [unique_id "ajRdeEqnat61RdE9Q78bvAAAAAA"], referer: https://www.google.com/search?q=beckersystems.com
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-12 23:40:19
(1 month ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
Anonymous
2026-06-04 15:19:05
(1 month ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack