๐ณ๐ฑ
EGP Abuse Dept
2026-07-06 00:07:27
(4 hours ago)
Numeric HELO: 206.217.129.78
Email Spam
Exploited Host
๐ซ๐ท
UM3
2026-03-27 14:47:09
(3 months ago)
Exim Auth Failed
Brute-Force
๐บ๐ธ
TPI-Abuse
2024-10-14 08:23:14
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossin ...
show more
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 14 04:23:10.405017 2024] [security2:error] [pid 5337:tid 5337] [client 206.217.129.78:49339] [client 206.217.129.78] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "speedoflightxray.com"] [uri "/.env"] [unique_id "ZwzU7vTWMzhnUBi-xXZc_AAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
MortimerCat
2024-10-12 19:21:01
(1 year ago)
Attempting to download environment file
Web App Attack
๐ฏ๐ต
VXG-NET
2024-10-12 18:56:35
(1 year ago)
port=80, indicator_type=spyware
Email Spam
๐บ๐ธ
TPI-Abuse
2024-10-12 16:46:23
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossin ...
show more
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 12 12:46:18.925622 2024] [security2:error] [pid 23569:tid 23569] [client 206.217.129.78:60696] [client 206.217.129.78] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.204"] [uri "/.env"] [unique_id "Zwqn2ryXTzetPnFSCEuKrwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-10-12 16:27:20
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossin ...
show more
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 12 12:27:17.261115 2024] [security2:error] [pid 14221:tid 14221] [client 206.217.129.78:57008] [client 206.217.129.78] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.18"] [uri "/.env"] [unique_id "ZwqjZUMyny0Q4HHMetXMnQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-10-12 15:09:24
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossin ...
show more
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 12 11:09:18.644801 2024] [security2:error] [pid 16608:tid 16608] [client 206.217.129.78:58401] [client 206.217.129.78] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.109"] [uri "/.env"] [unique_id "ZwqRHjdU_H7mD62PaQ0-dAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-10-12 14:44:55
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossin ...
show more
(mod_security) mod_security (id:210492) triggered by 206.217.129.78 (206-217-129-78-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 12 10:44:52.096998 2024] [security2:error] [pid 29937:tid 29937] [client 206.217.129.78:54883] [client 206.217.129.78] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.33"] [uri "/.env"] [unique_id "ZwqLZEAnWTesHGHQNTO_eAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
IP Analyzer
2024-10-08 14:16:31
(1 year ago)
Unauthorized connection attempt from IP address 206.217.129.78 on Port 80(HTTP)
Brute-Force
๐ง๐ช
sid3windr
2024-10-05 09:26:08
(1 year ago)
GET /.env (Tarpitted for , wasted 0B)
Web App Attack
Anonymous
2024-10-02 16:36:44
(1 year ago)
Mailserver Auth Brute Force Attempts
Hacking
Brute-Force
๐ง๐ช
sid3windr
2024-10-01 02:39:38
(1 year ago)
GET /.env (Tarpitted for , wasted 0B)
Web App Attack
๐บ๐ธ
JasonS
2024-09-25 13:21:00
(1 year ago)
Message: Blocked IP address 206.217.129.78 for abuse of [POP] - Time: 9/24/2024 11:27:04 PM
VPN IP
Brute-Force
Anonymous
2024-09-25 00:10:03
(1 year ago)
6x Dovecot auth failed (on 1 different adresses)
Brute-Force